SKIDATA, Inc., a wholly owned subsidiary of SKIDATA AG shares results of third party analysis of 3M/Federal development by Coalfire.
In order to fully inform the owners and operators of parking facilities of the risks of using a 3M/ Federal APD system SKIDATA engaged Coalfire Systems to assess the current situation from a PA-DSS point of view. Coalfire Systems is a highly respected Qualified Security Assessor (QSA) who analyzed the two Federal APD systems, EFMS and Scan Net, and published their findings in a white paper.
As the owner of the intellectual property of the these two systems, SKIDATA feels obliged to inform all owners, merchants and acquirers of Federal APD systems of the imminent security risk that they may be facing.
As communicated in previous press releases, SKIDATA developed an exclusive solution to counter these security threats which allows Federal APD run facilities to keep using their current equipment.
SKIDATA urges every owner or operator of Federal APD equipment to read the newly published white paper and to consult with their QSA.
Some of the most important findings of the white paper are summarized below:
- EFMS and Scan Net have last been assessed and certified for PA DSS 2.0 which has major security gaps and this can have serious consequences: “PA-DSS version 2.0 expired on October 28, 2016.”… “Merchants using an application assessed under PA-DSS 2.0 adds significant risk to the merchant of non-compliance penalties or suffering a data breach.”
- A facility using Scan Net or EFMS is under high risk of not meeting the latest PCI standards which may result in significant penalties. “Merchants using an application assessed under PA-DSS 2.0 adds significant risk to the merchant of non-compliance penalties or suffering a data breach.”
- It is important that facilities operating with 3M/Federal equipment do not underestimate this potential threat and act fast as the average cost of a data breach has most recently been $3.62 million according to a new study from the Ponemon Institute published in June 2017.
- The intellectual property of both 3M/Federal systems (EFMS and Scan Net) is exclusively owned by SKIDATA. “… any changes to either application can only be made by SKIDATA as the legal owner…Only the application vendor owning the application and the intellectual property rights to that application, may modify, update, or fix the software application any associated listing with the PCI SSC.”
SKIDATA is dedicated to supporting PCI compliant environments so that owners and operators avoid costly security breaches. Our solution also aims at protecting your investment by allowing functional Federal devices to operate on a state of the art SKIDATA software system with a PADSS 3.2 compliance.
The entire Coalfire Systems White Paper on the SKIDATA 3M Solution is available online at the following link:
SKIDATA is passionate about its commitment to deliver superior, reliable, and trend setting solutions. We are ready to help our customers to unlock the power of SKIDATA.
SKIDATA is an international leader in the field of access solutions and their management. With 10,000 SKIDATA installations worldwide in major airports, municipalities, shopping centers, sports stadiums, ski resorts, trade shows, and amusement parks, we provide secure and reliable access and entry control for people and vehicles. Our access solutions empower our customers to drive their business forward. SKIDATA, Inc. (www.skidata.com) is a wholly owned subsidiary of the SKIDATA Group (www.skidata.com) which belongs to the publicly traded Swiss Kudelski Group (www.nagra.com), a leading provider of digital security solutions.