 |
 Third-Party
Security Scanners/Assessors
USA ePay uses multiple third party security companies to
ensure that our security is always meeting or above the
standards. Every security assessor working with USA ePay
provides seals for our clients to view our certification for verification of
meeting these security standards.
Please click on the seals to verify and see the certifications.
|
TrustWave
|
Qualys
|
|
McAfee
|
Security
Metrics
|
|
|
Secure
Socket Layers (SSL)
All of USA ePay's communications and processing occur through
Secure Socket Layers (SSL). To ensure an even higher level of
security, we use 1024-bit SSL encryption with all of our
transactions. Any toolkits linked for usage with the USA ePay
gateway are also tested to make sure that security is set up
properly. With the proper security layers set up between
toolkits and the gateway, we can ensure that no information can
be stolen and all information is securely transmitted. |
|
Identification
Through Source Keys
Many older gateways use IDs and passwords to verify a user's
identity and facilitate communication between that user and the
gateway, but the security of this method is easily compromised.
So at USA ePay, we developed the Key System for safe, secure
identification and communication.
Each Merchant toolkit (such as a shopping cart) communicates
with the gateway using a unique high-bit encrypted string called
a Key. When information is sent to the gateway, the Key
identifies not only the merchant, but also the specific toolkit from
which the information originated. This allows merchants to feel
secure in the knowledge that the toolkit source code does not
contain sensitive information such as their username and
password. It also provides the opportunity for merchants to use
separate Keys for each individual toolkit. Merchants can also
revoke a Key if they notice that it is being misused.
|
|
Fraud
Stopper
The USA ePay Fraud Stopper is built on a Module Stack Design.
Each module controls a different aspect of security and
merchants can choose which modules to include in the fraud
control stack. Some examples of modules include: duplicate
transaction control, block by country, block by IP address, and
many more. The Module Stack Design provides the opportunity for
merchants to add or change their fraud modules depending on
their unique security needs. USA ePay is always adding new fraud
modules to the Fraud Stopper to keep our merchants up to date
with the latest fraud security.
Fraud Stopper also allows merchants to apply different fraud
settings to different Keys or Sources. For example, a merchant
may wish to implement a high level of fraud control for an
online shopping cart, but a lower level on the console for their
own employees.
|
|
Storing
Credit Cards the Secure Way
USA ePay realizes that the theft of lists or databases in which
credit card information is stored can have dire consequences for
merchants and for their customers. With this in mind, USA ePay
has developed a revolutionary new way of storing credit card
information.
In the USA ePay system, each credit card number is stored
individually, making it impossible to steal an entire list or
database full of sensitive data. Credit card numbers can only be
viewed on an individual basis by unlocking or decrypting each
one. If a card number is needed, the requested number is
decrypted and unparsed from the system, a process that takes
only a few seconds.
USA ePay's non-database system provides the highest possible
level of security for credit card data storage.
|
|
 |
PCI DSS Compliance
PCI DSS has become one of the most important advances in the
credit card industry and online security. USA ePay is proud to
support the PCI DSS program and is compliant. Find out more...
» |
|
-
Contacting Us
It's easy to get in touch with us. We are
here to help you when you need us.
-
Become a Reseller
Are you a merchant service bank or ISO
interested in reselling the gateway to your
merchants? Get started today with USA ePay.
|
|
|
|
|
|
|
