Bluefin Announces the Addition of New PCI P2PE Devices, Application Listings and Component Providers

November 9, 2018         By: Payment Week

November 8, 2018 – Atlanta, GA – Payment security leader Bluefin today announced the addition of several new devices, key injection facilities (KIFs), applications and the Verifone Certificate Authority (CA) to their PCI-validated Point-to-Point Encryption (P2PE) listing.

Bluefin provides the leading payment security platform that supports payment gateways, processors and ISV’s in 28 countries. The company became the first North American provider of a PCI-validated P2PE solution in March 2014 and in October 2014, introduced Decryptx®, the industry’s only PCI P2PE Decryption as a Service (DaaS) that enables payment processors, gateways and ISV’s to offer Bluefin’s solution directly through their platforms.

Today, Bluefin’s Decryptx network includes 92 connected partners in 28 countries, with over 80 devices/applications and 9 KIFs. New device additions to the company’s PCI-validated P2PE listing include the:

  • Verifone VX805
  • Verifone VX820
  • Verifone VX690
  • Verifone E355
  • Ingenico IUP250LE
  • Ingenico IUC150B
  • Ingenico IUR250
  • PAX A80
  • Datecs BluePad 50

Additional applications include the Verifone XPI v12.11.x (D2 App) and the Ingenico P2PE RBA v1.1 (updated to support the iSelf series) – as well as a new KIF, First Data TASQ Canada.

Bluefin has also added the Verifone Certificate Authority (CA) to their listing. This Certificate Authority Component will now be used to support Remote Key Injection (RKI) of Verifone devices. RKI allows for devices already deployed in the field to be injected onsite with secure P2PE keys rather than taken out of service and shipped to a KIF for injection.

“Bluefin’s payment encryption protects card data in the device before it ever reaches the rest of a merchant’s environment,” said Ruston Miles, Chief Strategy Officer, Bluefin. “It’s not enough to offer the most secure payment acceptance option to merchants. We know it’s also important to couple that with the form factors, convenient features and mobile connection options that merchants and cardholders demand.”

Bluefin currently has the largest list of PCI-validated P2PE devices of any P2PE solution provider and has secured 13 U.S. and Japanese patents on Decryptx and the P2PE Manager.

“Bluefin’s partners and merchants have the most secure and widest array of device, connection and distribution options available in the world today by a long-shot,” added Miles.

As part of Bluefin’s PCI-validated P2PE solution package, the company also provides partners and clients access to the P2PE Manager®, a patented, online management system that enables the complete lifecycle monitoring of P2PE devices – including includes key injection, device shipping and tracking for chain-of-custody, device state and attestation management, and a record of every decryption performed by every device.

On December 11th, Bluefin will host a free webinar that will delve into the data breaches of 2018, examine the breach methods that hackers are using to gain access to POS systems and networks – and discuss how Bluefin can secure processing with PCI-validated P2PE and tokenization through the company’s network of over 90 Connected P2PE partners. Register is now open.

About Bluefin

Bluefin provides the leading payment security platform that supports payment gateways, processors and ISV’s in 28 countries. Bluefin’s secure payment platform is key to the holistic approach to data security. Designed to complement EMV and tokenization, Bluefin’s PCI-validated Point-to-Point (P2PE) solutions provide a solid security defense against current and future data breaches. Bluefin supports point of sale solutions for retail, mobile, call center and kiosk/unattended environments, and secure Ecommerce technologies. Bluefin is a Participating Organization (PO) of the PCI Security Standards Council (SSC) and is headquartered in Atlanta, with offices in New York, Chicago, Tulsa and Waterford, Ireland. For more information, please visit