Understanding Security APIs - CrySyS Lab
Understanding Security APIs - CrySyS Lab
Understanding Security APIs - CrySyS Lab
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
5.3.6 Prism Payment Technologies<br />
http://www.prism.co.za<br />
Prism Payment Technologies is a South African HSM manufacturer that has swallowed<br />
up a large portion of the SA crypto market. They have two major roots. The<br />
first was the company ‘Linkdata’, which started out building electronic funds transfer<br />
switches for routing PIN processing transactions. After a management buyout,<br />
the name ‘Prism’ was created. They moved from there to focus substantially on the<br />
prepayment electricity market, where they developed the TSM200 (see section 6.3.6<br />
and section 7.3.11 for a fuller description including an attack on the API). They<br />
were very successful in the SA prepayment electricity meter market, and also made<br />
POS devices using the TSM200.<br />
In late 2000 Prism acquired ‘Nanoteq’ from Comparex holdings. Nanoteq was another<br />
SA HSM manufacturer that started out as a local builder and supplier of<br />
communications security equipment for the SA military. South Africa was able to<br />
support a number of different manufacturers during apartheid because of import<br />
and export restrictions, and the concern that imported devices may have trapdoors.<br />
Nanoteq was founded in the 80s, and later expanded into the commercial market<br />
with POS devices, smartcards and a low-performance HSM called the SM500. In<br />
1998 Comparex acquired Nanoteq, a small HSM manufacturer called CAT, and part<br />
of Mosaic Software. Their product ranges were merged, and Mosaic software wrote<br />
a financial API for use with CAT’s HSMs. It was this product range that Prism<br />
acquired, rebranding it the ‘Incognito’ series.<br />
The Incognito series includes the older TSM credit dispensing HSMs, and several<br />
flavours of custom-programmable general purpose HSMs, which support authenticated<br />
code loading, and performance similar to the IBM 4758.<br />
5.3.7 Eracom<br />
http://www.eracom-tech.com<br />
Eracom is an Australian HSM manufacturer, founded in 1979. It has produced<br />
general purpose cryptographic equipment such as a DES accelerator for block-level<br />
disk encryption in 1985, and since 1991 has been producing programmable HSMs.<br />
They have a strong secondary base of operations in Germany, and supply to various<br />
continental European nations from there. Their HSM ranges are called ‘ProtectHost’<br />
and ‘ProtectServer’, implementing Eracom’s proprietary ‘ProtectToolkit’ API.<br />
51