Enable Animation
ShieldConex® Orchestration is a vaultless secure data exchange API that provides and incorporates the powerful capabilities of ShieldConex® Tokenization (pass-through tokenization).
It provides a more powerful solution than the offerings on the market, relying on the client being integrated and certified with the endpoint provider.
For CNP use (eCommerce or MO/TO), a ShieldConex® token is detokenized by ShieldConex®, and the cardholder data is reinserted into the message and sent to the processor for approval. The response from the processor is proxied back to the client.
By using our embedded iframe approach to protect user interactions, you can avoid PCI and other compliance issues by working only with Bluefin tokens.
Sensitive payment data, PII and PHI can be captured within the iframe, meaning that you avoid the need to handle this data in your systems. Instead, our iframe solution immediately tokenizes the sensitive data.
All tokens are made available in one Bluefin API call, and can be used as-is for processor API interactions via the ShieldConex® Orchestration API.
Sensitive data is collected safely using the ShieldConex® iframe. The client retrieves tokenized data, and using ShieldConex® Orchestration, the tokens - along with additional payload elements - are sent for detokenization. This secure processing mode ensures that the client never directly handles sensitive data.
📘 Non-PCI Data Support
While ShieldConex and ORCA are most commonly used to protect PCI-scoped payment data, the same architecture and workflows can be applied to non-PCI sensitive data, including PII.
If required by the merchant, ORCA and SCX can tokenize, encrypt, and securely route PII data independently of payment data, using the same onboarding, orchestration, and processing model.
ShieldConex® Orchestration is a vaultless secure data exchange API that provides and incorporates the powerful capabilities of Decryptx® PCI-validated Point-to-Point Encryption (P2PE).
It provides a more powerful solution than the offerings on the market, relying on the client being integrated and certified with the endpoint provider.
This could be an EMV integration with a payment processor that transmits a lot of data to the payment processor. ShieldConex® Orchestration handles only the specific fields that require actioning, leaving all other data untouched.
Bluefin offers the PointConex integration with a wide range of Bluefin-P2PE certified devices.
For the full list of P2PE-certified devices, refer to Bluefin Supported PCI-Validated P2PE Devices.
📘 Terminology
In the POIntConex term, POI stands for Point of Interaction device that represents the hardware and software of the Point of Sale systems.
PointConex is a bundle solution supporting payment terminal decryption and orchestration to the payment processor (target destination).
This bundle consists of:
The Bluefin P2PE-enabled payment terminals provide support for the following card entry methods:
IDTECH
Ingenico (RBA) Payloads
Miura
WisePad 2
📘 Terminal Payloads and ORCA Workflow
In order to simulate the card read/entry and P2PE encryption, we have included all the sample encrypted payloads extracted from a number of P2PE enabled payment terminals.
Select one of the P2PE encrypted payloads based your preferred payment terminal. The payment terminal reads the card (in accordance with the card entry method) and encrypts it on hardware level via methods like SRED, outputting the P2PE encrypted payload similar to the ones below.
Then, click on the "Initate ORCA Workflow" button where the interactive visual workflow will be showcased, breaking down each Bluefin service involved before Bluefin ShieldConex ORCA forwards the payment data to the payment processor - safeguarding sensitive information throughout the payment processing journey.
This workflow is simulated via our certification system in real-time and is ready to be integrated for the merchant system.
Enable Animation