Online Payments
Security
Westpac's PnP Net has the following security measures in place:
Encryption
Triple DES algorithm in cipher-feedback mode is used for all two-way data encryption. PnP Net's underlying cryptography technology is based on Sun's Java Cryptography Extensions (JCE), which provides a implementation framework for encryption, key generation and key management. It supports symmetric, asymmetric, block and stream ciphers.
Messaging Controls
System interfaces that involve sharing of data between systems external to PnP Net include the following elements:
- All external systems sending messages to PnP Net must be pre-registered, otherwise the message will not be accepted (reverse IP lookup is used for all incoming messages).
- Extensible Mark-up Language(XML); Hypertext Transport Protocol(HTTP); Secure HTTP(HTTPS); and XML Remote Procedure Calls(XMLRPC);
- All PnP Net messaging is compatible with firewalls and proxy servers.
Firewalls
All servers are partitioned onto a three-layer firewall model with the web, application and database cells being separated by firewalls. No data is kept on the web or application servers. By default all IP addresses and ports are blocked on all firewalls.