P2PE and E2EE Security


P2pE vs E2EE

  • E2EE is End to End Encryption methodology
  • P2PE is a Point to Point Encryption methodology

P2PE is a subset of E2EE. The major difference between P2PE and E2EE is that P2PE does not allow the merchant to be a manager of the encryption keys. Under the P2PE standard, only the transaction processor or other third party is allowed to perform key management. The merchant is never allowed to perform encryption key management under the P2PE standard. As a result, DUKPT can be used by both P2PE and E2EE solutions. However, under P2PE, the key management must be done by a third party, not the merchant.

Cloud9 & E2EE/P2PE

Cloud9 Payment Processing Gateway certified processor specific E2EE  implementations (such as TransArmor from FDC and Voltage)  to reduce the PCI scope of its customers.  Native Cloud9 Zero Cost P2PE Encryption is also available.

Need more help?

Contact Us