Tokenization: Vault based Vs Vault-less

by
Tokenization means generating a random number as an alternative for a Credit card (PAN) number. The random number can be Numeric/Non-numeric. It is in such a format that others cannot decode it.   
***
The popular tokenization server is the Vault server. It generates a random Token for each transaction customer made at Merchant outlets. You can find how card numbers are masked with junk characters in the pdf provided. Here is the Visa Security Tokenization Pdf.


Vault vs Vault-less

Two Top Tokenization Servers.

  1. Vault based server
  2. Vault-less server

    What is Tokenization?



    1. Vault based server

    It stores a Card number (PAN) and a Token in a Table of the Teradata database as Key and value pairs. Due to the growing volume of transactions, the handling of the database became a big challenge for acquirers. 

    For each transaction, the vault server stores a record. That row contains both the Credit card number and its Token. When you use the same card multiple times, it generates different Tokens.  It is the basic concept of any Token server.  


    The tokenization process


    2. Vault-less Server.


    The Vault-less server is much faster. It generates random numbers based on the Split-algorithm logic. So decoding is harder. For each credit card transaction, it generates a new token.


    Moreover, it does not store card numbers and tokens. It generates both numeric or alphanumeric Tokens. Here is the list of top differences between the Vault and Vaultless servers.


    The principle behind this is to generate a random number and send it out.


    Comments

    1. SuzyOctober 14, 2018 at 4:34 PM

      Hello Srini

      Just read your article on vault -v- vaultless, this question can only be answered depending on the vault itself - was it built to be scalable? Does it store every transaction? Quite simply no it does not, but like i say it all depends on how the vault was built. Is it more secure than vaultless - definately.

      ReplyDelete
      Replies
      1. SriniOctober 26, 2018 at 7:06 PM

        Vault-less is reversible security method that replaces sensitive data with fake data that looks and feels just like the real thing. So vault-less is advanced than Vault.

        Delete

    Post a Comment

    Thanks for your message. We will get back you.

    Most Popular

    7 AWS Interview Questions asked in Infosys, TCS

    by
    Image
    I have shared 7 amazing AWS interview questions for your quick reference. 1). What is AWS? Amazon Web Services (AWS) provides on-demand computing resources and services in the cloud, with pay-as-you-go pricing. For example, you can run a server on AWS that you can log on to, configure, secure, and run just as you would a server that's sitting in front of you 2). What you can do with AWS? Store public or private data. Host a static website. These websites use client-side technologies (such as HTML, CSS, and JavaScript) to display content that doesn't change frequently. A static website doesn't require server-side technologies (such as PHP and ASP.NET). Host a dynamic website or web app. These websites include classic three-tier applications, with web, application, and database tiers. Support students or online training programs. Process business and scientific data. Handle peak loads. AWS Questions 3). What is the Security group? A security group acts as a virtual fi
    Read more

    How to Decode TLV Quickly

    by
    Image
    In TLV, the format is Tag, Length, and Value. The TLV protocol needs this type of data. Here you will know how to decode TLV data.  According to IBM , TLV data is three parts. The tag tells what type of data it is. The length field denotes the length of the value. The Value-field denotes the actual value. Structure of TLV. TLV comprises three field values.  Tag Length Value How to Decode TLV EMV formulated different tags. They have their meanings. Usually, the Tag and Length together takes 1 to 4 bytes. 1. The Best example for TLV. In the below example, you can find the sample TAG, LENGTH, and VALUE fields. [Tag][Value Length][Value] (ex. " 9F4005F000F0A001 ") where,  Tag Name =  9F40 Value Length (in bytes) =  05  Value (Hex representation of bytes. Example, "F0" – 1-byte) =  F000F0A001 In the above message, tag 9F40 has some meaning designed by EMV company. Here  you can find a list of EMV Tags. 2. How to read the TLV Tag: 1 or 2 bytes. Length: Length of the Value
    Read more

    Hyperledger Fabric: 20 Real Interview Questions

    by
    Image
    I am practicing Hyperledger. This is one of the top listed blockchains. This architecture follows R3 Corda specifications. Sharing the interview questions with you that I have prepared for my interview. Though Ethereum leads in the real-time applications. The latest Hyperledger version is now ready for production applications. It has now become stable for production applications. The Hyperledger now backed by IBM. But, it is still an open source. These interview questions help you to read quickly. The below set of interview questions help you like a tutorial on Hyperledger fabric. Hyperledger Fabric Interview Questions 1). What are Nodes? In Hyperledger the communication entities are called Nodes. 2). What are the three different types of Nodes? - Client Node - Peer Node - Order Node The Client node initiates transactions. The peer node commits the transaction. The order node guarantees the delivery. 3). What is Channel? A channel in Hyperledger is the subnet of
    Read more