HPE SecureData Payments

Point-to-point Protection for Payment Data

In today’s environment of highly publicized credit card breaches and increased regulatory requirements, mitigating the risk of a data breach in the payment stream is critical – from authorization and settlement through business processes such as charge-backs, loyalty or repeat payments. Merchants and processors must be able to reliably protect credit card data at rest and in transit within their environment, and reduce PCI scope without impacting business.

HPE SecureData Payments provides complete point-to-point encryption and tokenization for retail payment transactions, enabling PCI scope reduction.

Learn More


HPE Format-Preserving Encryption (FPE)

With HPE FPE, credit card numbers, track data and other types of structured information are protected without the need to change the data format. Merchants can preserve existing processes such as BIN routing or use of the last 4 digits of the card for receipt printing, while protecting sensitive digits from the browser or terminal to the payment processor.


HPE Identity-Based Encryption (IBE)

HPE IBE eliminates the complexity of traditional key management systems, significantly reducing implementation and management costs. No digital certificates or keys are required to be injected or synchronized. Encryption keys are securely generated on demand and not stored, POS devices are not subject to key injection and key rotation.


HPE Secure Stateless Tokenization (SST)

Point-to-point encryption can easily be combined with HPE SST to provide merchants with a complete solution for reducing PCI audit scope. HPE SST replaces PAN data after authorization with randomly-generated tokens, which reduces the risk of data theft and removes merchant systems from PCI scope without the cost and complexity of maintaining a token vault database.


HPE SecureData Payments Terminal SDK

Can easily be implemented with any mobile or terminal SDK and payment processing systems. Already integrated into leading payment card reading devices and pin-pads, offering merchants the flexibility to support the hardware of their choice.


HPE SecureData Payments Host SDK

Supports a wide variety of platforms, including Windows, Linux, HPE NonStop, Stratus VOS, and IBM z/OS, enabling maximum protection and efficiency.


HPE SecureData and HPE Atalla HSM Integration

Extends end-to-end data protection through the combined, integrated solutions of HPE SecureData Payments and HPE Atalla Hardware Security Module (HSM). By joining data-centric data protection with a tamper-reactive hardware security module, companies are able to neutralize data breaches by protecting data while storing the master secret in a hardened storage device, rendering it useless to attackers.

HPE Security – Data Security highlights payment solutions HPE Atalla HSM and HPE SecureData during Discover 2016 customer event in Las Vegas. Security solutions protect payment transactions end-to-end.

Learn More

“By tokenizing card numbers immediately at the point of
purchase, we’ve gone beyond PCI compliance to actually eliminating clear data from the transaction process. That’s the number one way we assure our customers that Epicor is doing everything possible to secure their businesses.”

Bill Wilson

Senior Vice President of Product Development

Epicor Software Corporation

HPE SecureData Payments Securing Sensitive Data


HPE SecureData Payments is a complete payment transaction protection framework, built on two breakthrough technologies: HPE Format-Preserving Encryption (FPE) and HPE Identity-Based Encryption (IBE). Payment data is protected point-to-point, from swipe through to the payment processor. By protecting the data itself, HPE SecureData Payments eliminates security gaps that exist between networks, databases and applications when traditional security solutions are used. HPE SecureData Payments protects data at rest, in use, and in motion, securing sensitive data point-to-point.

More Information

Coalfire Systems HPE Atalla HSM Analysis Whitepaper

Read White Paper

HPE SecureData and HPE Atalla HSM Integration

Read Data Sheet

HPE SecureData Mobile PCI DSS Technical Assessment

Read Technical Brief

HPE SecureData Payments PCI DSS Control Applicability Assessment

Read White Paper

HPE SecureData Web PCI DSS Technical Assessment

Read White Paper

Epicor secures thousands of main street retailers with HPE SecureData Payments

Read Case Study

HPE SecureData Payments

Read Data Sheet

HPE SecureData Payments Solution – Processor Edition

Read White Paper

Achieving PCI DSS 3.0 Compliance with HPE Security – Data Security

Read White Paper

HPE SecureData Mobile

Read Data Sheet

Regional Air Carrier Protects Sensitive Data and Cuts Compliance Costs

Read Case Study

Heartland Payments Systems eBook Case Study

Read Case Study

Columbia Sportswear Company

Read Case Study

HPE Security in Payment Systems by The Nilson Report

Read White Paper
“Heartland developed a complete end-to-end encryption solution designed to protect cardholder data at all stages of a transaction; from card swipe through delivery to the card brands. Together with HPE Security - Data Security, we are developing a comprehensive solution that currently does not exist.”
Heartland Thales Testimonial

Steve Elefant

Former CIO

Heartland Payment Systems

Reduce the Risk of a Card Payment Data Breach

Render sensitive information useless to unauthorized users, mitigating risk of data breaches at any point in the payment stream

Buy HPE SecureData Payments