Mako PCI Presentation


Published on

Mako Networks is a Certified PCI DSS Level 1 Service Provider. Mako is able to more easily assist merchants comply with the requirements of PCI DSS in an efficient and cost effective way.

  • Be the first to comment

  • Be the first to like this

No Downloads
Total views
On SlideShare
From Embeds
Number of Embeds
Embeds 0
No embeds

No notes for slide
  • PCI has been designed to help reduce credit card fraud
  • Small merchants are being fined (upon breach) every month until they comply with PCI Why not just comply with PCI and have no fines if they are breached?
  • Internet management & productivity solution Connects SME’s & branch offices of larger organisations
  • Mako enables merchants to easily move from dial-up to Eftpos over IP
  • Adding a Mako gateway adds security and control Takes the gateway appliance off of the Internet / stops anyone accessing it
  • Yellow highlights = Covered by Mako’s RoC
  • Green Highlights = POS network protected by Mako
  • Any new device has to be authenticated to access the N/W If a device isn’t authenticated it isn’t allowed to access the N/W
  • Merchants can only connect to a known PCI compliant gateway partner Makes transaction re-directs impossible
  • Many large merchants have had issues remaining compliant Evan small changes can put you out of compliance. Mako ensures you don’t do it by accident!
  • Mako system also tracks if a merchants Payment Application is PA DSS compliant
  • QSA Bundle enables a total solution for the merchant Merchants has to agree to follow and maintain change controls etc...
  • Passwords / IPSEC keys have to roll every 90 day Mako automate / no other vendor does! Work out the cost (1 hour per week on average?) $150/$200 per hour x 52 weeks = $7,800 / $10,400
  • Complying with one bit of PCI doesn’t make you compliant. You have to comply with everything.
  • Mako PCI Presentation

    1. 1. Small Site PCI DSS Network Security Service Provider N E T W O R K S
    2. 2. TM Why PCI DSS The Payment Card Industry have responded to the sharp growth of credit card fraud, identity theft and other credit card associated crimes by developing a security standard for all users of their services.
    3. 3. TM Repercussions of Non-Compliance Failing to comply with the mandatory PCI DSS requirements is not an option for ongoing credit card acceptance. Non-compliance will result in a range of penalties imposed by the Payment Card Industry to the Acquirer. The penalties include fines, restrictions and the possible loss of ability to accept card payments.
    4. 4. What is the Mako System? TM <ul><li>Managed Services Platform for Broadband Networking </li></ul><ul><li>Specifically developed to connect SMEs via the Internet </li></ul><ul><li>The Mako System consists of: </li></ul><ul><ul><li>A range of appliances </li></ul></ul><ul><ul><li>A hosted central management platform </li></ul></ul>
    5. 5. Transition to IP? TM <ul><ul><li>Save millions per annum on fees </li></ul></ul><ul><ul><li>Cheaper and easier for merchants to deploy multiple lanes </li></ul></ul><ul><ul><li>Future-proof your network </li></ul></ul>
    6. 6. <ul><li>Mako VPN Concentrator can be placed in front of the payment gateway </li></ul><ul><li>Only communication via secure encrypted VPN allowed </li></ul><ul><li>Simple and effective way to control communication between POS terminal fleet and payment gateway </li></ul>Securing Payment Gateway Connectivity TM
    7. 7. Mako System & PCI DSS TM <ul><ul><li>Level One Service ProviderAudited against all 200+ points by DeloitteRoC issued 03 Feb 2010 </li></ul></ul>
    8. 8. Mako System & PCI DSS TM <ul><ul><li>Protection for POS networksControls terminal connectivityAlerts on unauthorised terminal connection </li></ul></ul>
    9. 9. <ul><li>Devices on a merchant’s POS network are registered and known by the Mako </li></ul><ul><li>Connection of any unregistered devices triggers an alert </li></ul><ul><li>Merchant/QSA/Bank notified </li></ul>Controlling Devices on the POS Network TM
    10. 10. <ul><li>Mako ensures configured POS terminals can only communicate with the payment gateway </li></ul><ul><li>Any modification of this configuration triggers an alert to merchant/QSA/bank </li></ul>Controlling Terminal Connectivity TM
    11. 11. TM Maintaining PCI DSS Compliance with Mako The Mako System ensures that merchants remain compliant PCI status reporting Proactive alerts advise when a merchant is at risk of breaching PCI DSS compliance
    12. 12. Importance of Using Mako in Achieving Compliance The Mako System addresses 100% of the Network Security requirements under the PCI DSS No other security vendor does this Additionally the Mako System assists compliance in the documentation process TM
    13. 13. Mako QSA Bundle <ul><li>QSA-approved on-line documentation & procedures </li></ul><ul><li>Provides a complete PCI DSS solution </li></ul>TM
    14. 14. TM Card-Present Merchants Meeting PCI DSS Compliance
    15. 15. TM Card-Present Merchants Meeting PCI DSS Compliance
    16. 16. PCI DSS Network Vendor Comparison - Day 1 TM
    17. 17. PCI DSS Network Vendor Comparison - Day 90* TM * With no on-site visits or engineering costs
    18. 18. <ul><li>With the Mako System: </li></ul><ul><li>Not just a firewall </li></ul><ul><li>Complete PCI compliant network and management system </li></ul><ul><li>Turnkey </li></ul><ul><li>Cost effective PCI DSS networking security service </li></ul>TM Meeting PCI DSS Compliance <ul><li>Traditional solutions: </li></ul><ul><li>Substantial amount of ongoing engineering </li></ul><ul><li>Extremely costly </li></ul><ul><li>Core network upgrades </li></ul>
    19. 19. Miscommunication About Gaining Compliance TM <ul><li>No single solution can address all issues of compliance. </li></ul><ul><li>All providers must be PCI DSS compliant in order for a merchant to be compliant. </li></ul><ul><li>Miscommunication from payment gateway providers stating that using their system provides full compliance. </li></ul>
    20. 20. <ul><li>Pieces of the puzzle </li></ul>TM Maximise Internet Productivity and Minimise Associated Costs PCI POS S/W Terminals Payment Gateway Firewall Policies A/V Protect Stored Data Track & Monitor
    21. 21. TM <ul><li>For businesses wanting to provide a PCI DSS compliant networking and security service to merchants the Mako cloud computing model is the most effective solution. </li></ul><ul><li>Reduced support costs </li></ul><ul><li>Greater profits and annuity revenue stream </li></ul><ul><li>Increased customer satisfaction </li></ul>Benefits of the Mako System in PCI DSS Compliance
    22. 22. N E T W O R K S