DOCSLIB.ORG

First Data Transarmor Verifone Edition Technical Assessment White Paper

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
First Data Transarmor Verifone Edition Technical Assessment White Paper First Data TransArmor VeriFone Edition Technical Assessment White Paper Prepared for: March, 2016 Dan Fritsche, CISSP, QSA (P2PE), PA-QSA (P2PE) [email protected] Table of Contents EXECUTIVE SUMMARY ........................................................................................................................................... 3 OVERVIEW .................................................................................................................................................................... 3 SUMMARY FINDINGS....................................................................................................................................................... 6 PCI DSS VALIDATION REDUCTION .......................................................................................................................... 7 CONTROL REDUCTION FOR MERCHANTS ........................................................................................................................... 11 DEPLOYMENT SCENARIOS .............................................................................................................................................. 11 PCI DSS CONTROL REDUCTION SUMMARY ....................................................................................................................... 12 SUMMARY CHART OF MERCHANT PCI DSS CONTROL REDUCTION ........................................................................................ 12 DETAILED PCI DSS CONTROL REDUCTION ......................................................................................................................... 13 TECHNICAL ASSESSMENT ..................................................................................................................................... 13 SCOPE OF ASSESSMENT ................................................................................................................................................. 13 TRANSARMOR VERIFONE EDITION ENCRYPTION ASSESSMENT ............................................................................................... 18 KEY LOADING AND DISTRIBUTION .................................................................................................................................... 19 APPENDIX A: PCI DSS CONTROL REDUCTION RISK MAPPINGS ............................................................................. 25 DETAILED PCI DSS CONTROL REDUCTION ......................................................................................................................... 25 Copyright 2016, Coalfire Systems Inc. Page | 2 Executive Summary Overview First Data engaged Coalfire Systems Inc. (Coalfire), as a respected Payment Card Industry (PCI) Qualified Security Assessor Point to Point Encryption (QSA P2PE) company to provide an update to the First Data TransArmor VeriFone Edition (TAVE) PCI DSS 3.1 whitepaper reflecting the current standards. Coalfire conducted an independent technical assessment of the TransArmor VeriFone Edition (TAVE), secured by RSA security solution in 2013. During that timeframe, Coalfire conducted assessment activities including technical testing, an architectural assessment, industry analysis, a compliance validation and peer review. The Whitepaper with PCI DSS 2.0 standards was released in July 2013. This paper reflects the revised whitepaper addressing First Data TAVE and how it aligns to current PCI-DSS v3.1 standards. In this paper, Coalfire will describe how the TransArmor VeriFone Edition security solution can dramtically reduce the current risk of payment card data compromise within a merchant’s retail environment and can minimize PCI DSS validation when properly deployed. This reduction in validation effort will be based on evaluating the risk of each of the PCI DSS 3.1 requirements and how the TAVE security solution applies to each control within the context of the current PCI P2PE standards released in 2015. The focus of this paper is to clarify how a merchant can benefit from TAVE even though it is not yet a formally listed solution. The conclusions from this paper are provided as guidance to First Data so that they can make a risk based decision for the reduction of a merchant’s scope when properly using TAVE. About TransArmor VeriFone Edition TransArmor VeriFone Edition is a comprehensive, modular and flexible solution designed to provide merchants with strong encryption of payment card data from the point of capture to the point of decryption in First Data’s secure data center. TAVE combines VeriFone’s encryption methodology, VeriFone Total Protect (VTP) and Format Preserving Encryption (FPE), along with First Data’s TransArmor tokenization technology. The goals of the TransArmor VeriFone Edition solution are: 1. Reduce the risk of compromise to cardholder data throughout the entire transaction process, from point of entry through authorization and settlement. 2. Minimize the number of applicable controls that merchants must address for compliance to the Payment Card Industry (PCI) Data Security Standard (DSS). 3. Simplify and reduce costs associated for merchants with validation of PCI DSS compliance efforts. TAVE helps shift the burden of protecting payment card data from the merchant to First Data using the latest encryption and tokenization technologies. This solution: Combines encryption and tokenization to protect cardholder data at every processing stage. Maintains all the merchant’s business benefits of storing the payment cardholder data without the associated risk. Compliments Card Authentication technologies like EMV. Copyright 2016, Coalfire Systems Inc. Page | 3 TAVE includes these high level components: 1. Merchant Point of Interaction (POI) – A VeriFone device encrypting cardholder data in hardware as it is collected. 2. First Data Switch – This includes First Data’s Front End Authorization Platform (FEP) and Secure Transaction Management (STM) handler for routing and processing capabilities. This is hosted by First Data in a PCI DSS compliant facility. 3. First Data Decryption and Tokenization – This includes the Hardware Security Module (HSM), VeriShield Decryption Service (VSD) and TransArmor (TA) for tokenization. This is again hosted by First Data in a PCI DSS compliant facility. This assessment included the above components in PCI compliant testing labs and focused on First Data’s implementation of VeriFone’s VTP encryption methodology, paired with TransArmor tokenization, to provide a secure encryption solution for merchants. Audience This assessment report has three potential audiences. This report is addressed primarily to the first group, merchants, but can be used by others as well. 1. Merchants: This audience is evaluating the First Data TransArmor VeriFone Edition security solution for deployment in their payment card environment. Merchants will be able to clearly understand what benefits they can receive from using TAVE in their environment, including risk and the reduction of applicable controls. 2. QSAs and the Internal Audit Community: This audience may be evaluating the First Data TransArmor VeriFone Edition security solution to determine the impact on PCI DSS validation on behalf of their merchant. 3. First Data and Partners: The final target audience is the product and engineering teams of First Data and its technology partners. The purpose of including this audience is to provide an independent evaluation of their solution and help them identify any areas for improvement. Assessment Scope The scope of our assessment focused on the critical elements that validate the security and effectiveness of the security solution. Coalfire incorporated in-depth analysis of compliance fundamentals that are essential for evaluation by merchants, service providers and the QSA community. In addition, Coalfire reviewed information and feedback obtained from members of the PCI community; however, the opinions and findings within this evaluation are solely those of Coalfire and do not represent any assessment findings, or opinions, from any other parties. Although tokenization is part of the TAVE solution, this assessment focuses solely on how TAVE uses encryption and decryption technologies. The reader should gain an understanding on how TAVE can be leveraged in the context of PCI DSS v3.1 and the current PCI P2PE standards. Tokenization is relevant to Copyright 2016, Coalfire Systems Inc. Page | 4 protecting and reducing PCI DSS validation post-authorization for data at rest. For additional information regarding the value of Tokenization, please review the link below: http://www.firstdata.com/downloads/thought-leadership/Value-of-Tokens-WP.pdf This First Data paper leverages the testing performed for 2013 FD TAVE assessment and provides an update to the 2013 FD TAVE whitepaper to reflect the current PCI DSS 3.1 standards. Methodology Coalfire has implemented industry best practices in our assessment and testing methodologies. Standard validation methods were used throughout the assessment. Coalfire conducted technical lab testing in both the Coalfire Lab located in Louisville, Colorado and the First Data Lab in Omaha Nebraska. This included interviews, documentation review, transaction testing, encryption evaluation and forensic analysis. Merchant PCI DSS Compliance Scope Even the best encryption technologies do not completely eliminate the scope of PCI DSS compliance validation, as some in the industry have claimed. In fact, if a merchant is accepting a payment card, the entirety of PCI DSS always applies
Load more

Recommended publications
  • City Council Report
    City Council Report Date: December 9, 2019 To: City Council Through: Michael Kennington, Deputy City Manager/Chief Financial Officer From: Edward Quedens, Business Services Director Matt Bauer, Procurement Administrator Subject: Five-Year Term Contract with Five Years of Renewal Options for Banking Services (Service Groups 1, 2 and 4) for the Financial Services Department (Citywide) Recommendation Council is requested to approve the award as recommended. A committee representing Financial Services Department and Purchasing evaluated responses. The evaluation committee recommends awarding the contracts to the highest scored proposals from the following vendors: General Banking – JP Morgan Chase at $120,000 annually; Merchant Card Processing – U.S. Bank / Elavon at $18,000 annually; and Paying Agent Services – UMB Bank, N.A. at $18,000 annually; with an annual increase allowance of up to 5% or the adjusted Consumer Price Index. Background / Discussion The City of Mesa makes extensive use of banking services to collect, disburse and manage its cash and investments. Comprehensive banking services includes general banking services, merchant card processing, institutional custody and payment agent services. General banking services includes cash services, deposit services, disbursement services, electronic transfer of funds and general reporting - JP Morgan Chase is the incumbent for general banking services. Merchant card services represent the City’s ability to process credit card transactions - US Bank / Elavon is the incumbent for merchant card services. Institutional custody services represent the safekeeping of the assets/securities in the City’s investment portfolio - Wells Fargo Bank, N.A. is the incumbent for institutional custody services. The City requires the services of a qualified paying agent, registrar, transfer agent, filing agent, and trustee for current and future bond issues - US Bancorp is the incumbent for Paying agent services.
    [Show full text]
  • Merchant Services Program Terms and Conditions
    Merchant Services Program Terms and Conditions (Program Guide) PREFACE Thank you for selecting us for your payment processing needs. Accepting numerous payment options provides a convenience to your customers, increases your customers’ ability to make purchases at your establishment, and helps speed payment to your account. Your Merchant Processing Application will indicate the types of payments and Services you have elected to accept. These Program Terms and Conditions (“the Program Guide”) presents terms governing the acceptance of Visa,® MasterCard,® and Discover® Network Credit Card and Non-PIN Debit Card payments, PayPal in-store Card payments, American Express® Card transactions and applicable Non-Bank Services. This Program Guide, your Merchant Processing Application and the schedules thereto (collectively, the “Agreement”), including, without limitation, the Interchange Qualification Matrix and American Express Program Pricing and one of the Interchange Schedules, as applicable to your pricing method as set forth in the Merchant Processing Application, contains the terms and conditions under which Processor and/or Bank and/or other third parties, will provide services . We will not accept any alterations or strike-outs to the Agreement and, if made, any such alterations or strike-outs shall not apply. Please read this Program Guide completely. You acknowledge that certain Services referenced in the Agreement may not be available to you. IMPORTANT INFORMATION ABOUT BANK’S RESPONSIBILITIES: Discover Network Card Transactions, PayPal in-store Card Transactions, American Express Card Transactions and other Non-Bank Services are not provided to you by Bank, but are provided by Processor and/or third parties. The provisions of this Agreement regarding Discover Network Card Transactions, PayPal in-store Card Transactions, American Express Card Transactions and other Non-Bank Services constitute an agreement solely between you and Processor and/or third parties.
    [Show full text]
  • Download the Digital Magazine At: Firstdata.Com/Connected
    VOLUME 3 | 2018 THE CENTER OF COMMERCE the innovators CASE STUDY: 2 QSR Company INFORMATION QSR customer upgrades their fraud COVER detection to enable a new mobile RESULTS: application launch PROBLEM: When this customer launched a new version of their mobile app, they saw fraud spikes that decrease & ANALYTICS called for new tools. 80% in fraud. SOLUTION: The Advanced offering of Fraud Detect was implemented with a machine learning QSR- industry model, a rules engine, and Case 14 SOLUTIONS Manager. First Data also implemented a capability $200K allowing this customer to test the model at saved after fees. DATA AT THE SPEED OF COMMERCE different scoring thresholds. The innovators Building the new retail frontier. 19 bonus: SPECIAL section Unlocking Merchant Innovation Using machine learning to combat fraud. Shopping is about to get interesting. 8 Mobility Hits Its Groove 44 Fintech & Bank Fusion 10 Outsmarting Fraudsters 47 The Power of Partnerships 12 Rewards Revolution 48 Payments Everywhere 35 The New Big Data 50 Gen-Z Rising 39 Food for Thought 54 Financial Literacy in the Gig Economy 40 Tackling the Pay Gap download the digital magazine At: FirstData.com/Connected Not sure about you, but our dogs are always finding innovative new ways to get our attention. Through this issue of Connected, we take a look at how partnerships, changing consumer landscapes, and fraud breakthroughs are fetching innovative ideas across industries – Labonardo da Vinci and Thomas Pugison would be so pleased. As you’re reading, keep an eye out for the pooches and pups hidden throughout the pages and count them up.
    [Show full text]
  • First Data Credit Card Fraud Protection – User Guide Contents: 1 How to Reduce the Risk of Card Present Fraud
    First Data Credit Card Fraud Protection – User Guide Contents: 1 How to reduce the risk of card present fraud. 4 2 How to reduce the risk of card not present fraud 7 3 Delivering the goods 9 4 Refunding 10 5 Third Party Processing 10 Credit Card Fraud Protection 6 What to do if you suspect or identify a fraudulent transaction 10 7 Chargebacks 11 8 Points to Remember 11 1. How to reduce the risk of card present fraud When the card is present at the point of sale, take a good look at the card to ensure that it is genuine. Ensure that you maintain possession of the card until the transaction has been completed. Check Card Details • Does the card appear genuine? Is the embossing clear and even and does the printing look professional? • Check the front and back to ensure the card contains: - Card Issuer’s logo - Cardholder name - Card number - Expiry date - Signature - CVV2/CVC2 – The 3 digit value located on or near the signature panel of the credit card. - Hologram (should appear three-dimensional and change colour when tilted), • If the customer is paying with a foreign-issued card and using a signature rather than a PIN, check the cardholder’s signature on the receipt against the actual credit card • Check expiration dates on all credit cards. Never accept an expired credit card. • Ensure the number embossed on the front of the card matches the truncated number on the receipt. • Does the name match the customer? For example: does the gender of the presenter match the salutation of the name printed on the card? Ask for photo identification to confirm details if suspicious.
    [Show full text]
  • Written Testimony of Kim Ford Executive Director U.S. Faster
    Written Testimony of Kim Ford Executive Director U.S. Faster Payments Council Before the Task Force on Financial Banking Technology of the House Financial Services Committee “Is Cash Still King? Reviewing the Rise of Mobile Payments” Thursday, January 30, 2020 9:30 am 2128 Rayburn House Office Building 1 | P a g e Chairman Lynch, Ranking Member Emmer, and distinguished members of the Task Force on Financial Technology of the House Financial Service Committee, thank you for this opportunity to testify before you today at this hearing on “Is Cash Still King? Reviewing the Rise of Mobile Payments.” My name is Kim Ford, and I am the Executive Director of the Faster Payments Council (FPC), an industry trade association born out of the efforts of the Federal Reserve and the collective payments industry to modernize the U.S. payments system. Today, the FPC serves as an inclusive and representative membership organization whose mission is to facilitate ubiquitous faster payments in the U.S. Our membership represents every facet of the payments industry, including business end-users, consumer organizations, financial institutions, payment network operators, technology providers, associations and other interested stakeholders such as individuals representing academic institutions and industry consultants. The FPC works to achieve its mission through: 1. Education - The FPC spearheads educational initiatives to foster better understanding of faster payments and confidence among providers and end users to increase adoption. 2. Problem-Solving - The FPC tackles the tough issues that inhibit adoption of faster payments so that end users can pay and be paid in seamless and transparent ways.
    [Show full text]
  • Merchant Services Program Terms and Conditions
    Merchant Services Program Terms and Conditions (Program Guide) PREFACE Thank you for selecting us for your payment processing needs. Accepting numerous payment options provides a convenience to your customers, increases your customers’ ability to make purchases at your establishment, and helps speed payment to your account. Your Merchant Processing Application will indicate the types of payments and Services you have elected to accept. These Program Terms and Conditions (“the Program Guide”) presents terms governing the acceptance of Visa®, MasterCard®, and Discover® Network Credit Card and Non-PIN Debit Card payments, PayPal® in-store Card payments, American Express® Card transactions and applicable Non-Bank Services. This Program Guide, your Merchant Processing Application and the schedules thereto (collectively, the “Agreement”), including, without limitation, the Interchange Qualification Matrix and American Express Program Pricing and one of the Interchange Schedules, as applicable to your pricing method as set forth in the Merchant Processing Application, contains the terms and conditions under which Processor and/or Bank and/or other third parties, will provide services . We will not accept any alterations or strike-outs to the Agreement and, if made, any such alterations or strike-outs shall not apply. Please read this Program Guide completely. You acknowledge that certain Services referenced in the Agreement may not be available to you. IMPORTANT INFORMATION ABOUT BANK’S RESPONSIBILITIES: Discover Network Card Transactions, PayPal in-store Card Transactions, American Express Card Transactions and other Non-Bank Services are not provided to you by Bank, but are provided by Processor and/or third parties. The provisions of this Agreement regarding Discover Network Card Transactions, PayPal in-store Card Transactions, American Express Card Transactions and other Non-Bank Services constitute an agreement solely between you and Processor and/or third parties.
    [Show full text]
  • Your Payments Acceptance Guide
    Your Payments Acceptance Guide 1 © 2018 First Data Corporation. All Rights Reserved. v12_2018 Welcome From Start to Finish A guide to accepting payments Payment acceptance solutions are an essential part of your business. As your partner, we want to make accepting payments as simple as possible for you. That’s why we created Your Payments Acceptance Guide. It’s your quick reference to the guidelines for processing transactions. You’ll also find recommendations and tips to help you prevent fraud, reduce chargebacks, and properly handle payments, refunds, exchanges, and most other situations you’ll encounter in your day-to day-business. If you have questions about processing payments or other aspects of your merchant arrangement, please contact the First Data Merchant Solutions Call Centre on 1800 243 444 where lines are open 24/7. 2 © 2018 First Data Corporation. All Rights Reserved. v12_2018 . Your Payments Acceptance Guide Contents I. General ............................................................................................................................ 5 1. Use of Card Scheme Brands ............................................................................................ 5 2. Validating Card Brands ..................................................................................................... 6 3. Merchant Statements ....................................................................................................... 6 4. Point-of-Sale (POS) Reminders ......................................................................................
    [Show full text]
  • First Data Payment Gateway
    First Data Payment Gateway Virtual Terminal User Guide Version 2.3 First Data is a trading name of First Data Europe Limited, a private limited company incorporated in England (company number 02012925) with a registered address at Janus House, Endeavour Drive, Basildon, Essex, SS14 3WF. First Data Europe Limited is authorised and regulated by the UK Financial Conduct Authority (FCA register No. 582703; CCA No. 739230). First Data Europe Limited has appointed FDR Limited as payment and collection agent for the services provided under your Merchant Agreement. FDR Limited is a company incorporated in the State of Delaware, United States, under registration number 22692 35, registered in England as a branch of an overseas company with limited liability (company number FC015955) and branch number BR001147, whose registered office in the United Kingdom is at Janus House, Endeavour Drive, Basildon, Essex, SS14 3WF. © 2017 First Data Corporation. All Rights Reserved. All trademarks, service marks, and trade names referenced in this material are the property of their respective owners. Contents 1. Introduction 5 2. Processing Transactions 6 2.1 Transaction Terminology 6 2.2 Using Your Web Browser as a Virtual Point of Sale Machine 6 2.3 Processing Sale transactions 7 2.4 Selecting Products from your Product Catalogue 7 2.5 Order Information 8 2.6 Enter payment data for card transactions 9 2.7 Pre-validation of Card Type 11 2.8 Payment URL 11 2.9 Shipping 13 2.10 Recurring Payments 13 2.11 Comments 13 2.12 Additional Data Elements MCC 6012 14 2.13 Complete the Transaction 15 2.14 GlobalChoice™ 16 2.15 Processing subsequent transactions 18 2.15.1 Completion (Ticket Only) 18 2.15.2 Forced Ticket Transactions 18 2.15.3 Processing Returns 19 2.15.4 Crediting a customer’s account 19 2.15.5 Voiding Orders 20 3.
    [Show full text]
  • First Data™ FD55 Terminal
    First Data™ FD55 Terminal The Challenge As new payment methods continue to emerge, customers want full flexibility, speedy transactions and protection from fraud when paying for purchases. Further, with limited counter space, merchants need a compact terminal that can handle everything—credit, industry guidelines. First Data’s new TransArmor® debit, gift cards, checks, electronic benefits transfer solution offers a layer of protection previously and even loyalty programs. Despite the complexities, unavailable anywhere on the market. This innovation cost-conscious merchants operating in this difficult combines encryption with tokenization, which economy are looking for affordable solutions to their completely removes card information from your point-of-sale needs. environment so it cannot be used for fraud. The Solution Here’s How it Works The First Data™ FD55 terminal is an economical If you choose to connect via your existing Broadband point-of-sale terminal that enables merchants to Internet service, our Datawire Secure Transport accept virtually every payment option—PIN-secured* solution provides speed and security, and may even and signature debit, Visa®, MasterCard®, American save you money over dial-up or other options. Express®, Discover®, Diners Club International® and Optional dial backup is also supported in the event JCB®, plus EBT (electronic benefits transfer)*, First that Internet connectivity is temporarily unavailable Data gift and loyalty cards. (analog phone line required). This space-saving device is compatible with At a speed of 18 lines per second, the device’s built-in many standard peripheral devices, including printer powers through text for fast checkouts. the FD-10 PIN pad, PP1000SE and PP1000SE with It’s built for jam-free operation, and it’s a snap to contactless capabilities.
    [Show full text]
  • Merchant Services
    November 2011 Mobile POS Solutions © Copyright 2011 | First Data Corporation The Mobile Merchant’s Point of Sale An Ever-Moving Destination • Risky business • Carrying around cash • Accepting checks on faith • Writing down card information to call in later • People prefer to pay by credit or debit card • Mobile payment terminals may not fit the micro-merchant’s budget • Card-not-present interchange rates erode profits © Copyright 2011 | First Data Corporation | 2 Sizing up the Market Over 60 million potential mobile users • 16.5 million merchants are targets for mobile payments acceptance*. • Smart-phone-based mobile card acceptance will explode beyond 1.4 million by 2014. • Service professionals and small merchants are looking at mobile POS acceptance. Card-not-present vs. swipe: • Card-not-present transactions, or “keytail”, were the first target of Smartphone-based payments • Merchants and channel partners alike are requesting card-present (swiped/MSR) support • Card-present transactions • Qualify for lower interchange • Are more convenient • Provide a professional experience for both the merchant and the consumer • Encryption at the MSR is quickly evolving as an product standard *Mercator Advisory Group, July 2010 © Copyright 2011 | First Data Corporation | 3 Mobile Solutions from First Data A Full Array of Choices • Highly Mobile, Wireless, • Mobile, Wireless, • Wi-Fi, Limited Mobility Carrier-Agnostic Built for Purpose • First Data™ FD100Ti • First Data® Mobile PaySM • First Data™ FD400Ti • First Data™ FD200Ti • VeriFone PAYware
    [Show full text]
  • Innovalue #Payments
    Innovalue #payments INSIGHT | OPINION Vol 5 • Q4 2013 Quo Vadis Acquiring in Germany Jan Lettow, Associate, Innovalue Acquirers in the German payment market are currently confronted with a set of challenges. These are partly due to a historically challenging business environment and partly due to new developments within the market. The market for acquirers in Germany has always been under pressure due to 1. a strong position of payment methods not relying on a 4-party scheme, 2. a fragmented market with many small acquirers and hence missing economies of scale, 3. low customer loyalty and a perception of acquiring as a commodity which is Interchange Fee) Regulation proposed by the Accordingly, major acquirers are already only differentiated through the price European Commission in July 2013. Especially considering ways to bypass the regulation, and the questionable market intervention to cap e.g. through foreign subsidiaries in order to 4. a low level of innovation and the MIF of cross-border acquirers at 0.2% for be able to offer the reduced MSC as well investments into new products by the debit and 0.3% for credit card transactions (cf. Der Handel, 03.10.2013). The discussions incumbent acquirers. bears the potential to disrupt the acquirer and consultations with regard to the The already strained market environment will landscape. If the regulation is adopted in regulatory package are currently ongoing in become even more burdened as existing its current form, foreign acquirers will have Brussels. According to market opinions, this challenges continue to intensify and new the opportunity to profit from a temporary arbitrary market intervention will not be present challenges will materialize in the near future.
    [Show full text]
  • PAR Brink POS EMV Card Processor Configuration Guide Ii
    ParTech, Inc. 8383 Seneca Turnpike, New Hartford, NY 13413 | p. 800.458.6898 | www.partech.com EMV Card Processor Configuration Guide August 2019 — Revision 7 Publication Details Publication Details Copyright Copyright © 2016–2019 by PAR Technology Corporation, Inc. All Rights Reserved. This product and related documentation are protected by copyright and are distributed under licenses restricting their use, copying, distribution, and decompilation. No part of this product or related documentation may be reproduced in any form by any means without prior written authorization of PAR and any requisite licensors. Trademarks, Patents, etc. Brink, Brink POS, PAR, ParTech, and all of their respective logos are trademarks or registered trademarks of PAR Technology Corporation, Inc. PAR holds the following patents in the United States that pertain to the Brink POS software suite: 6,382,850; 6,871,325; 8,146,077. PAR may have other patents, patent applications, trademarks, copyrights, or other intellectual property rights covering subject matter in this document. Except as expressly provided in any written license agreement from PAR, the furnishing of this document does not convey any license to these patents, trademarks, copyright, or other intellectual property. Microsoft® and Windows® are registered trademarks of Microsoft Corporation in the United States and other countries. Other product names may be trademarks or registered trademarks of their respective companies and are hereby acknowledged. Disclaimer This document is provided for informational purposes only. PAR makes no warranties, either expressed or implied, in this document. Information in this document is subject to change without notice. Risk of use and responsibility for the results of use of this document lie with the user.
    [Show full text]