Preview only show first 10 pages with watermark. For full document please download

Ep2 Minimal Hardware Requirements

Rating
Date

November 2018
Size

697.5KB
Views

5,328
Categories

Computers & electronics Computers POS terminals

Transcript

eft/pos 2000 Minimal Hardware Requirements for Terminal Hardware Certification Version 6.3.0 Terminal Model: Specification Checklist for Terminal Hardware Certification Revision History Date April 6, 2004 Version 5.1 October 31, 2004 5.2 December 8, 2006 5.3 October 31, 2007 5.4 October 31, 2008 5.5 October 31, 2009 5.6 October 31, 2010 5.7 December 30, 2011 5.8 December 10, 2012 6.0.0 November 4, 2013 6.1.0 December 12, 2014 6.2.0 November 2, 2015 6.3.0 17 - 2 Description Author Card capture for unattended terminals Martin Osley was changed from mandatory to optional. Combined insert card reader for unat- Martin Osley tended terminals allowed. Reduction from 4 to 2 SAM slots Martin Osley PIN Pad exceptions and Prove of Tele- Martin Osley com Compatibility removed Acceptance of PCI PED reports for se- Martin Osley curity evaluation, requirements for combined card readers in vending machine precised Card locking requirement removed, privacy shield mandatory, contactless payment requirements added and PCI PED report required for sec.acceptance PIN Pads with alpha numeric keys allowed PCI PED replaced by PCI-PTS POI. Contactless requirements removed, it is not part of the ep2 hardware certification SAM slot requirement removed, enhanced display and printer requirement added Terminal Type precised Security Evaluation Report updated Terminal classes added incl. rework, electronic Purse requirement removed Martin Osley Martin Osley Martin Osley Martin Osley Martin Osley Martin Osley Martin Osley © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Specification 1 Introduction . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5 1.1 1.2 Scope . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 5 ep2 Terminal Classes. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6 2 Required Documents . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7 2.1 2.2 2.3 2.3.1 2.3.2 2.3.3 2.4 Standards . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7 EMV . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7 Security Evaluation Report . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7 PIN Pad Tamper-Evidence .............................................................................................. 7 PIN Pad and IFD Configuration...................................................................................... 8 PIN Pad and Proximity Coupling Device (PCD) Configuration..................................... 8 SRED Terminal . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9 3 PIN Pad . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9 3.1 3.2 3.3 3.4 3.5 3.6 3.7 3.8 3.9 3.10 Requirement for PIN Pad . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9 PIN Pad Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 9 Operating of the PIN Pad . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10 PIN Pad Keys . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10 Reserved Colours for Command Keys . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10 Position of Command Keys . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10 Key Labelling . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 PIN Pad Numeric Layout . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Tactile Identifier for Key ‘5’ . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12 Privacy during PIN Entry . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12 4 Key Pad . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12 4.1 4.2 4.3 Requirement for Key Pad . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12 Touch Screen. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 12 Types of Keys . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 5 Display . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 5.1 5.2 5.3 Requirement for Display . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 Display Size . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 Graphic Display . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14 6 Clock . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14 6.1 6.2 Requirement for Clock . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14 Independence of External Current . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14 © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 3 Specification Checklist for Terminal Hardware Certification 7 Printer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14 7.1 7.2 Requirement for Printer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14 Printer Size. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15 8 Card Reader . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15 8.1 8.2 8.3 8.3.1 8.3.2 8.3.3 8.3.4 8.3.5 8.3.6 8.3.7 Contactless Card Reader . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15 Accessability of Card Reader . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15 Contact Card Reader . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15 Motorized Reader.......................................................................................................... 15 Hybrid Reader ............................................................................................................... 16 Support for Track 2 ....................................................................................................... 16 Reading Direction of Magnetic Stripe .......................................................................... 16 Card Capture ................................................................................................................. 16 Shutter ........................................................................................................................... 16 Accessibility of Card after Power Failure..................................................................... 16 9 Buzzer . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17 9.1 Requirement for Buzzer. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17 10 Communication. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17 10.1 Requirement for Communication Component. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17 11 Persistence of Program and Data Storage . . . . . . . . . . . . . . . . . . . . . . . . 17 12 Checklist for Terminal Class ’AT-PED-ALL’ . . . . . . . . . . . . . . . . . . . . . 19 13 Checklist for Terminal Class ’AT-PED-CTLS’ . . . . . . . . . . . . . . . . . . . . 23 14 Checklist for Terminal Class ’UAT-PED-ALL’ . . . . . . . . . . . . . . . . . . . . 27 15 Checklist for Terminal Class ’UAT-PED-CTLS’. . . . . . . . . . . . . . . . . . . 31 16 Checklist for Terminal Class ’UAT-NON-PED’ . . . . . . . . . . . . . . . . . . . 35 17 - 4 © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Introduction 1 Specification Introduction The partner companies of the ep2 project define herein the minimal hardware requirements for a terminal used for electronic payment. The requirements are based on the current specification of EMV. The current EMV specification and all referenced documents of it are mandatory elements of the ep2 requirements. This document defines additional requirements for an EMV compliant terminal to be used in Switzerland. If incompatibilities are found with respect to existing specifications, the ep2 requirements prevail. Additionally this document summarises the test criteria, such as physical characteristics or conformity to international standards, which have to be fulfilled by a terminal in order to qualify for the ep2 hardware certificate. The document will be used by the ep2 Certification Authority for the terminal hardware certification. For questions and comments, please contact the ep2 certification authority. For all requirements in which the terminal does not fulfill the minimal hardware requirements a ’waiver request’ letter must be provided by the terminal suppliers to the ep2 certification authority. The ’waiver request’ letter must be accepted by all members of the ep2 working group (Technical Workgroup ep2). 1.1 Scope Validity The hardware minimal requirements are valid for new eft/pos terminals or new hardware components for existing terminals that are provided for applications of any of the project partners. This version replaces all prior versions of ep2 hardware requirements. Exclusion of Warranty It is the sole responsibility of the terminal manufacturer and/or supplier to ensure correct and complete functionality of the terminal. Conformance with these ep2 requirements does not ensure conformance with existing functional specifications or quality requirements. Changes of international standards and specifications and changes of legal national rules also remain within the risk and responsibility of the terminal supplier. © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 5 Specification ep2 Terminal Classes The ep2 terminal classes were first introduced in version 6.3.0 and are applied for certification according to version 6.2.0 or higher. Hardware Reader Comm. CVM-Methods FE, MI, BE, SI online comm. Offline PIN Online PIN Signature No CVM On Device/Mob. M M M M M M M M M M M M 18 AT-PED-CTLS M M M M - M M - M M M M 14 UAT-PED-ALL M M M M M M - M M M M - M M 4 UAT-PED-CTLS M M M M - - - M M - M - M M 4 UAT-NON-PED O O - - - M M - - - M M 2 Table 1 M - - M # Trx Types PAN Key Entry M MSR M ICR PIN Pad AT-PED-ALL CTLS Printer Terminal Class Display 1.2 Checklist for Terminal Hardware Certification Introduction ep2 Terminal Classes and its capabilities Explanation: - AT= Attended Terminal - UAT= Unattended Terminal - PED = PIN Entry Device - M = Mandatory - O = Optional - - = not applicable - CTLS = Contactless card reader (PCD) - ICR = Contact chip card reader (ICC contact reader) - MSR = Magnetic stripe reader 17 - 6 © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Required Documents 2 Required Documents 2.1 Standards Specification For certification by the ep2 certification authority, the following documents shall be brought by: a. Prove of Electromagnetic Compatibility b. Prove of CE Certificate of Conformity for all modules The ep2 certification authority reserves the right to ask for additional documents. This requirement applies to all terminal classes. 2.2 EMV The terminal shall fulfil all hardware-related requirements, which have been defined in EMV. This also includes all specifications and standards, which are referenced in EMV. a. ‘EMVCo Type Approval Level 1’ certificate only for terminal classes ’AT-PED-ALL’ and ’UAT-PED-ALL’. b. ep2 supports only 22 and 25. For 24 a waiver must be requested. c. EMVCo Type Approval Contactless Level 1 for Proximity Coupling Device (PCD), applies to all terminal classes. 2.3 Security Evaluation Report For all terminals, a security evaluation shall be performed by a PCI-PTS POI recognized laboratory. The resulting most recent PCI-PTS-POI (prior PCI PED) report shall be provided plus all necessary information (security concept, technical data, etc.) in order to judge the temper evidence of the terminal. See also sections 2.3.1 ’PIN Pad Tamper-Evidence’ and 2.3.2 ’PIN Pad and IFD Configuration’. This requirement applies to all terminal classes. 2.3.1 PIN Pad Tamper-Evidence A PIN pad shall be a tamper-evident device. This requirement applies to all terminal classes. © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 7 Specification 2.3.2 Checklist for Terminal Hardware Certification Required Documents PIN Pad and IFD Configuration The following two configurations are possible: a. PIN pad and IFD integrated The IFD and PIN pad shall be integrated into a single tamper-evident device. b. PIN pad and IFD separated The IFD and PIN pad shall be two separate tamper-evident devices. Encipherment between PIN pad and IFD shall conform to ISO 9564-1 (or an equivalent payment system approved method). A security concept shall describe how the ISO requirements have been fulfilled. Card Figure 1 Card Reader IFD PIN Pad Terminal Configuration with Separated PIN Pad and IFD This requirement applies to terminal classes ’AT-PED-ALL’ and ’UAT-PED-ALL’. 2.3.3 PIN Pad and Proximity Coupling Device (PCD) Configuration A Proximity Coupling Device (PCD) or contactless reader can be either part of the terminal or a separate device, such as a PCD in a ECR system. The following configurations are possible: a. PIN Pad and PCD integrated b. PIN Pad and PCD separated - For Contactless Payment the separate PCD does not have to be a tamper evident device. No additional security concept or requirements shall be fulfilled. - The separate PCD may be attached at the PIN Pad, AEM, ECR/VM or integrated in the ECR/VM 17 - 8 © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification PIN Pad Specification . conss 2 p e ctle ta Contactless Card Figure 2 PIN Pad Contactless Reader Configuration with separated PIN Pad and contactless reader Device This requirement applies to all terminal classes. 2.4 SRED Terminal A terminal may have a SRED (Secure Read and Exchange of Data) approval. 3 PIN Pad The PIN Pad requirements do not apply to terminal class ’UAT-NON-PED’. 3.1 Requirement for PIN Pad A terminal shall have a PIN pad for PIN entry. For attended terminals a separate key pad or ECR may be present for the entry of transactionrelated data and its functional operation. If no key pad is present (monobloc), the PIN pad shall fulfil the key pad requirements and the same key pad shall be used for both PIN entry and entry of other transaction-related data. 3.2 PIN Pad Port An attended terminal should be designed and constructed to facilitate the addition of a PIN pad, if not already present, such as having a serial port. © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 9 Specification 3.3 Checklist for Terminal Hardware Certification PIN Pad Operating of the PIN Pad The cardholder shall be able to operate the PIN pad. 3.4 PIN Pad Keys The PIN pad shall support all of the following keys: • Numeric: ‘0’ - ‘9’ • Command: Cancel, Enter, Clear Additional keys may be present. 3.5 Reserved Colours for Command Keys The following colours shall be used for the command keys, if present, either for the lettering or for the keys themselves: Command Key Enter Cancel Clear Table 2 3.6 Reserved Colour Green Red Yellow PIN Pad Keys Position of Command Keys When the command keys are horizontally arranged, the Cancel and Enter keys should be located on the bottom row of the key pad, and Cancel should be the furthest key left and Enter 17 - 10 © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification PIN Pad Specification should be the furthest key right. When the command keys are vertically arranged, Cancel should be the uppermost key and Enter the lowest key. ... STOP STOP ... Cancel Figure 3 3.7 OK Enter ... ... ... Cancel ... OK Enter Position of Command Keys Key Labelling • The command keys should be labelled, if present, as shown below (recommended): - Enter: ‘Ok’ or ‘OK’ - Cancel: ‘Stop’ or ‘STOP’ - Clear: ‘Corr’ or ‘CORR’ 3.8 PIN Pad Numeric Layout The PIN pad numeric layout shall comply with ISO 9564 as shown below. 1 2 3 4 5 6 7 8 9 0 Figure 4 PIN Pad Numeric Layout © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 11 Specification Checklist for Terminal Hardware Certification Key Pad The labelling of the PIN pad numeric keys with letters is allowed (no specific standard for the letter labelling is required). 3.9 Tactile Identifier for Key ‘5’ The key for ‘5’ shall have a tactile identifier (for example, a notch or raised dot) to indicate to those whose sight is impaired that this is the central key from which all others may be deduced. This requirement optional for terminal classes ’AT-PED-ALL’ and ’AT-PED-CTLS’. 3.10 Privacy during PIN Entry PIN entry must be performed in such a way that attendants and people nearby cannot easily observe the PIN during entry by the cardholder. Therefore, PCI requires that the PIN entry device must be equipped with a privacy shield, or designed so that the cardholder can shield it with his/her body to protect against observation of the PIN during PIN entry as specified in the PCI-PTS-POI Security Requirement manual. This requirement is defined by PCI-PTS-POI and shall be verified for: - attended terminals by the ep2 Certification Authority (terminal classes ’AT-PED-ALL’ and ’AT-PED-CTLS’) - unattended terminals (CAT) by the Conformance Testing Authority (terminal classes ’UAT-PED-ALL’ and ’UAT-PED-CTLS’) 4 Key Pad 4.1 Requirement for Key Pad An attended terminal shall have a key pad for the entry of transaction-related data and its functional operation. The key pad may be separated (as AEM, ECR) or integrated (monobloc). For unattended terminals a key pad is optional (for the operator). 4.2 Touch Screen A touch screen is considered to be a key pad. 17 - 12 © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Display 4.3 Specification Types of Keys The key pad should support one or more types of keys: • Numeric: ‘0’ - ‘9’ • Alphabetic and special: For example, ‘A’ - ‘Z’, ‘*’, ‘#’, • Command: Cancel, Enter, Clear • Function: Application-dependent keys, such as a selection key, F1, F2, Backspace, Escape A key pad may consist of a single key, such as a function key that could be a button on a vending machine to indicate selection of an application or to indicate that a receipt is to be printed. 5 Display 5.1 Requirement for Display An attended terminal of class ’AT-PED-ALL’ and ’AT-PED-CTLS’ shall have a display for the attendant and for the cardholder. • The display may be combined (monobloc) or may be separated (AEM or ECR). • It is recommended that an attended terminal has two separate displays, in order that different information may be displayed and different languages may be used for the attendant and cardholder. An unattended terminal of class ’UAT-PED-ALL’ or ’UAT-PED-CTLS’ shall have a cardholder display. An unattended terminal of class ’UAT-NON-PED’ may have a cardholder display. 5.2 Display Size Cardholder Display (if present) • At a minimum the message display shall be capable of displaying two lines of 16 characters each. The two lines shall be simultaneously displayed. • Enhanced terminal displays shall be capable of displaying four lines of at least 20 characters. The four lines shall be simultaneously displayed (four lines, each line allows 20 characters or more). Attendant Display (if present) • At a minimum the message display shall be capable of displaying two lines of 20 characters each. The two lines shall be simultaneously displayed. © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 13 Specification Checklist for Terminal Hardware Certification Clock • Enhanced terminal displays shall be capable of displaying four lines of at least 20 characters. The four lines shall be simultaneously displayed (four lines, each line allows 20 characters or more). 5.3 Graphic Display To facilitate the display of different languages used in different geographical areas, the terminal should support a graphic display. 6 Clock The clock requirement applies to all terminal classes. 6.1 Requirement for Clock Terminals shall have a clock with the local date and time. 6.2 Independence of External Current The clock shall be able to run without external current during at least 90 days. 7 Printer The printer requirement applies to all terminal classes, except for ’UAT-NON-PED’ it is optional. 7.1 Requirement for Printer A printer shall be present for receipt printing. For terminal class ’UAT-NON-PED’ it is optional. The printer may be integrated into the terminal or an external printer may be used, e.g. cash register printer. 17 - 14 © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Card Reader 7.2 Specification Printer Size The printer (if present) shall be able to print at least 24 alphanumeric characters per line. 8 Card Reader 8.1 Contactless Card Reader A contactless card reader (proximity coupling device - PCD) is mandatory for all terminal classes. The contactless reader shall be MasterCard PayPass, Visa PayWave and American Express express pay compliant / certified. 8.2 Accessability of Card Reader The card reader shall be accessible for the cardholder. Terminal classes ’AT-PED-ALL’ and ’UAT-PED-ALL’ shall ensure that there is no confusion about the technology the cardholder wants to use (this could be magnetic stripe, contact chip or contactless). If the cardholder wants to conduct a contact chip transaction with a dual interface chip card, the contact reader should be sufficiently remote from the PCD to ensure that the PCD does not detect the presence of the card. The same applies for magnetic stripe readers. 8.3 Contact Card Reader An ICC reader is mandatory only for terminal classes ’AT-PED-ALL’ and ’UAT-PED-ALL’. A magnetic stripe reader is mandatory only for terminal classes ’AT-PED-ALL’ and ’UATPED-ALL’. 8.3.1 Motorized Reader • Attended terminals of terminal class ’AT-PED-ALL’ may have a motorized reader. • Unattended terminals of terminal class ’UAT-PED-ALL’ shall have a hybrid motorized reader or a hybrid insert card reader. © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 15 Specification 8.3.2 Checklist for Terminal Hardware Certification Card Reader Hybrid Reader • For attended terminals of terminal class ’AT-PED-ALL’, it is recommended to use a hybrid reader, i.e. a combined chip card and magnetic stripe reader. • Unattended terminals of terminal class ’UAT-PED-ALL’, shall have a hybrid motorized reader or a hybrid insert card reader. 8.3.3 Support for Track 2 For terminal classes ’AT-PED-ALL’ and ’UAT-PED-ALL’ the magnetic stripe reader shall be able to read the full track 2. 8.3.4 Reading Direction of Magnetic Stripe • Attended terminals of terminal class ’AT-PED-ALL’ equipped with a hybrid reader shall read the magnetic stripe while putting in the card. • Unattended terminals of terminal class ’UAT-PED-ALL’equipped with a hybrid insert card reader shall read the magnetic stripe either by card insertion or by card insertion and removal (further details see [ep2cat]). 8.3.5 Card Capture Unattended terminals of class ’UAT-PED-ALL’may have a card capture mechanism (for left or stolen cards). If card capture mechanism is supported, captured cards shall be held in a secure housing of the terminal. The secure housing shall be able to store at least 15 cards. 8.3.6 Shutter For unattended terminals of class ’UAT-PED-ALL’ it is recommended to protect the card slot with a shutter. 8.3.7 Accessibility of Card after Power Failure For terminal classes ’AT-PED-ALL’ and ’UAT-PED-ALL’, one of the following alternatives for handling power failure during the transaction shall be supported: a. It shall be possible for the cardholder to access the card at the end of a transaction under all circumstances, even if power fails. b. If the card is not accessible after power failure, the card shall be captured after power on and held in a secure housing. 17 - 16 © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Buzzer 9 Buzzer 9.1 Requirement for Buzzer Specification For all terminal classes a buzzer is mandatory. The buzzer shall be able to produce a clearly audible sound (40 - 60 decibels). 10 Communication 10.1 Requirement for Communication Component All terminal classes shall be equipped with a communication facility. Exceptions: - Off-line only terminals of class ’UAT-NON-PED’ for debit/credit applications are subject to acquirer approval. 11 Persistence of Program and Data Storage The contents of the program and data storage including cryptographic keys and initialization data shall be maintained without external current supply for at least 90 days. © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 17 Specification 17 - 18 Checklist for Terminal Hardware Certification Persistence of Program and Data Storage © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’AT-PED-ALL’ 12 Specification Checklist for Terminal Class ’AT-PED-ALL’ Test Cases ep2 Terminal Model: applic. approval 2 Required Documents 2.1 Standards [2.1a] Electromagnetic Compatibility certificate provided m [2.1b] CE Certificate of Conformity provided m 2.2 EMV [2.2a] Compliance with EMV standard fulfilled m [2.2b] ‘EMV Type Approval Level 1’ certificate m [2.2c] ‘EMV Terminal Type is 22 or 25 m [2.2d] EMV Type Approval Level 1 for PCD provided m 2.3 Security Evaluation Report [2.3a] Most recent PCI-PTS POI report provided m [2.3b] Security concept, security relevant technical data pro- m vided 2.3.1 PIN Pad Tamper-Evidence [2.3.1] PIN pad tamper-evident m 2.3.2 PIN Pad and IFD Configuration [2.3.2a] PIN pad and IFD are integrated or separated (int. or sep.) [2.3.2b] Security concept fulfilling ISO requirements m 2.3.3 PIN Pad and Proximity Coupling Device (PCD) Configuration [2.3.3a] PIN pad and IFD are integrated or separated (int. or sep.) 2.4 SRED Terminal [2.4] SRED approved terminal o 3 PIN Pad 3.1 Requirement for PIN Pad [3.1a] PIN pad present [3.1b] Separate PIN pad or monobloc (sep. or mono) 3.2 PIN Pad Port Table 3 m Checklist for Terminal Class ’AT-PED-ALL’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 19 Specification Checklist for Terminal Hardware Certification Checklist for Terminal Class ’AT-PED-ALL’ Test Cases [3.2] PIN pad port present 3.3 Operating of the PIN Pad [3.3] Cardholder can operate PIN pad 3.4 PIN Pad Keys [3.4a] Mandatory PIN pad keys present [3.4b] Additional PIN pad keys present 3.5 Reserved Colours for Command Keys [3.5] Colours mapping correct 3.6 Position of Command Keys [3.6] Position of command keys correct 3.7 Key Labelling [3.7] Key labelling of command keys is correct 3.8 PIN Pad Numeric Layout [3.8] PIN pad numeric layout is correct 3.9 Tactile Identifier for Key ‘5’ [3.9a] Tactile Identifier present 3.10 Privacy during PIN Entry [3.10a] Privacy during PIN entry ensured (acc. PCI-PTSPOI) applic. approval r m m o m m r m r m 4 Key Pad 4.1 Requirement for Key Pad [4.1a] Key pad present [4.1b] Separate key pad (AEM, ECR) or monobloc (mono) 4.2 Touch Screen [4.2] Touch Screen present 4.3 Types of Keys [4.3] Minimal key pad keys m o r 5 Display 5.1 Requirement for Display [5.1a] Cardholder display present m [5.1b] Attendant display present m [5.1c] Separate attendant display (AEM, ECR) or combined display (monobloc)) Table 3 17 - 20 Checklist for Terminal Class ’AT-PED-ALL’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’AT-PED-ALL’ Test Cases 5.2 Display Size [5.2a] Minimal cardholder display size fulfilled [5.2b] Minimal attendant display size fulfilled 5.3 Graphic Display [5.3] Graphic display present Specification applic. approval m m r 6 Clock 6.1 Requirement for Clock [6.1] Clock present 6.2 Independence of External Current [6.2] Independence of external current fulfilled m m 7 Printer 7.1 Requirement for Printer [7.1a] Printer present m [7.1b] Integrated or external printer, e.g. cash register (int. or ext.) 7.2 Printer Size [7.2a] Minimal printer size fulfilled m 8 Card Reader 8.1 Contactless Card Reader [8.1a] Contactless (PCD) reader present [8.1b] Compliant with MC, Visa and AMEX 8.2 Accessability of Card Reader [8.2] Accessability of the card reader 8.3 Contact Card Reader [8.3a] ICC reader present [8.3b] Magnetic stripe reader present 8.3.1 Motorized Reader [8.3.1] Motorized reader present 8.3.2 Hybrid Reader [8.3.2] Hybrid reader present 8.3.3 Support for Track 2 [8.3.3] Full track 2 can be read 8.3.4 Reading Direction of Magnetic Stripe Table 3 m m m m m r r m Checklist for Terminal Class ’AT-PED-ALL’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 21 Specification Checklist for Terminal Hardware Certification Checklist for Terminal Class ’AT-PED-ALL’ Test Cases applic. approval [8.3.4a] Reading direction of magnetic stripe correct m 8.3.7 Accessibility of Card after Power Failure [8.3.7a] Handling of card accessibility after power failure cor- m rect [8.3.7b] Card accessibility power failure option: card accessible or card capture (access. or capt.) 9 Buzzer 9.1 Requirement for Buzzer [9.1a] Buzzer present [9.1b] Clearly audible sound m m 10 Communication 10.1 Requirement for Communication Component [10.1a] Communication component present [10.1b] Communication component options (DSL, GPRS, PSTN, ISDN, etc.) 11 Persistence of Program and Data Storage [11] Persistence of Program and Data Storage including cryptographic keys and init-data fulfilled Table 3 m m Checklist for Terminal Class ’AT-PED-ALL’ Legend: m: mandatory r: recommended o: optional 17 - 22 © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’AT-PED-CTLS’ 13 Specification Checklist for Terminal Class ’AT-PED-CTLS’ Test Cases ep2 Terminal Model: applic. approval 2 Required Documents 2.1 Standards [2.1a] Electromagnetic Compatibility certificate provided m [2.1b] CE Certificate of Conformity provided m 2.2 EMV [2.2a] Compliance with EMV standard fulfilled m [2.2c] ‘EMV Terminal Type is 22 or 25 m [2.2d] EMV Type Approval Level 1 for PCD provided m 2.3 Security Evaluation Report [2.3a] Most recent PCI-PTS POI report provided m [2.3b] Security concept, security relevant technical data pro- m vided 2.3.1 PIN Pad Tamper-Evidence [2.3.1] PIN pad tamper-evident m 2.3.3 PIN Pad and Proximity Coupling Device (PCD) Configuration [2.3.3a] PIN pad and IFD are integrated or separated (int. or sep.) 2.4 SRED Terminal [2.4] SRED approved terminal o 3 PIN Pad 3.1 Requirement for PIN Pad [3.1a] PIN pad present [3.1b] Separate PIN pad or monobloc (sep. or mono) 3.2 PIN Pad Port [3.2] PIN pad port present 3.3 Operating of the PIN Pad [3.3] Cardholder can operate PIN pad 3.4 PIN Pad Keys Table 4 m r m Checklist for Terminal Class ’AT-PED-CTLS’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 23 Specification Checklist for Terminal Hardware Certification Checklist for Terminal Class ’AT-PED-CTLS’ Test Cases applic. approval [3.4a] Mandatory PIN pad keys present [3.4b] Additional PIN pad keys present 3.5 Reserved Colours for Command Keys [3.5] Colours mapping correct 3.6 Position of Command Keys [3.6] Position of command keys correct 3.7 Key Labelling [3.7] Key labelling of command keys is correct 3.8 PIN Pad Numeric Layout [3.8] PIN pad numeric layout is correct 3.9 Tactile Identifier for Key ‘5’ [3.9a] Tactile Identifier present 3.10 Privacy during PIN Entry [3.10a] Privacy during PIN entry ensured (acc. PCI-PTSPOI) m o m m r m r m 4 Key Pad 4.1 Requirement for Key Pad [4.1a] Key pad present [4.1b] Separate key pad (AEM, ECR) or monobloc (mono) 4.2 Touch Screen [4.2] Touch Screen present 4.3 Types of Keys [4.3] Minimal key pad keys m o r 5 Display 5.1 Requirement for Display [5.1a] Cardholder display present [5.1b] Attendant display present [5.1c] Separate attendant display (AEM, ECR) or combined display (monobloc) 5.2 Display Size [5.2a] Minimal cardholder display size fulfilled [5.2b] Minimal attendant display size fulfilled 5.3 Graphic Display Table 4 17 - 24 m m m m Checklist for Terminal Class ’AT-PED-CTLS’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’AT-PED-CTLS’ Test Cases Specification applic. approval [5.3] Graphic display present r 6 Clock 6.1 Requirement for Clock [6.1] Clock present 6.2 Independence of External Current [6.2] Independence of external current fulfilled m m 7 Printer 7.1 Requirement for Printer [7.1a] Printer present m [7.1b] Integrated or external printer, e.g. cash register (int. or ext.) 7.2 Printer Size [7.2a] Minimal printer size fulfilled m 8 Card Reader 8.1 Contactless Card Reader [8.1a] Contactless (PCD) reader present [8.1b] Compliant with MC, Visa and AMEX 8.2 Accessability of Card Reader [8.2] Accessability of the card reader m m m 9 Buzzer 9.1 Requirement for Buzzer [9.1a] Buzzer present [9.1b] Clearly audible sound m m 10 Communication 10.1 Requirement for Communication Component [10.1a] Communication component present [10.1b] Communication component options (DSL, GPRS, PSTN, ISDN, etc.) 11 Persistence of Program and Data Storage [11] Persistence of Program and Data Storage including cryptographic keys and init-data fulfilled Table 4 m m Checklist for Terminal Class ’AT-PED-CTLS’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 25 Specification Checklist for Terminal Hardware Certification Checklist for Terminal Class ’AT-PED-CTLS’ Legend: m: mandatory r: recommended o: optional 17 - 26 © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-PED-ALL’ 14 Specification Checklist for Terminal Class ’UAT-PED-ALL’ Test Cases ep2 Terminal Model: applic. approval 2 Required Documents 2.1 Standards [2.1a] Electromagnetic Compatibility certificate provided m [2.1b] CE Certificate of Conformity provided m 2.2 EMV [2.2a] Compliance with EMV standard fulfilled m [2.2b] ‘EMV Type Approval Level 1’ certificate m [2.2c] ‘EMV Terminal Type is 22 or 25 m [2.2d] EMV Type Approval Level 1 for PCD provided m 2.3 Security Evaluation Report [2.3a] Most recent PCI-PTS POI report provided m [2.3b] Security concept, security relevant technical data pro- m vided 2.3.1 PIN Pad Tamper-Evidence [2.3.1] PIN pad tamper-evident m 2.3.2 PIN Pad and IFD Configuration [2.3.2a] PIN pad and IFD are integrated or separated (int. or sep.) [2.3.2b] Security concept fulfilling ISO requirements m 2.3.3 PIN Pad and Proximity Coupling Device (PCD) Configuration [2.3.3a] PIN pad and IFD are integrated or separated (int. or sep.) 2.4 SRED Terminal [2.4] SRED approved terminal o 3 PIN Pad 3.1 Requirement for PIN Pad [3.1a] PIN pad present 3.3 Operating of the PIN Pad [3.3] Cardholder can operate PIN pad Table 5 m m Checklist for Terminal Class ’UAT-PED-ALL’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 27 Specification Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-PED-ALL’ Test Cases 3.4 PIN Pad Keys [3.4a] Mandatory PIN pad keys present [3.4b] Additional PIN pad keys present 3.5 Reserved Colours for Command Keys [3.5] Colours mapping correct 3.6 Position of Command Keys [3.6] Position of command keys correct 3.7 Key Labelling [3.7] Key labelling of command keys is correct 3.8 PIN Pad Numeric Layout [3.8] PIN pad numeric layout is correct 3.9 Tactile Identifier for Key ‘5’ [3.9a] Tactile Identifier present 3.10 Privacy during PIN Entry [3.10a] Privacy during PIN entry ensured (acc. PCI-PTSPOI) applic. approval m o m m r m m m 4 Key Pad 4.1 Requirement for Key Pad [4.1a] Key pad present 4.2 Touch Screen [4.2] Touch Screen present 4.3 Types of Keys [4.3] Minimal key pad keys o o r 5 Display 5.1 Requirement for Display [5.1a] Cardholder display present 5.2 Display Size [5.2a] Minimal cardholder display size fulfilled 5.3 Graphic Display [5.3] Graphic display present m m r 6 Clock 6.1 Requirement for Clock [6.1] Clock present Table 5 17 - 28 m Checklist for Terminal Class ’UAT-PED-ALL’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-PED-ALL’ Test Cases Specification applic. approval 6.2 Independence of External Current [6.2] Independence of external current fulfilled m 7 Printer 7.1 Requirement for Printer [7.1a] Printer present [7.1b] Integrated or external printer, e.g. vending machine application (int. or ext.) 7.2 Printer Size [7.2a] Minimal printer size fulfilled m m 8 Card Reader 8.1 Contactless Card Reader [8.1a] Contactless (PCD) reader present [8.1b] Compliant with MC, Visa and AMEX 8.2 Accessability of Card Reader [8.2] Accessability of the card reader 8.3 Contact Card Reader [8.3a] ICC reader present [8.3b] Magnetic stripe reader present 8.3.1 Motorized Reader [8.3.1] Motorized reader present 8.3.2 Hybrid Reader [8.3.2] Hybrid reader present 8.3.3 Support for Track 2 [8.3.3] Full track 2 can be read 8.3.4 Reading Direction of Magnetic Stripe [8.3.4a] Reading direction of magnetic stripe correct 8.3.5 Card Capture [8.3.5a] Card Capture mechanism implemented [8.3.5b] Minimal card capacity of secure housing fulfilled 8.3.6 Shutter [8.3.6] Shutter present 8.3.7 Accessibility of Card after Power Failure Table 5 m m m m m r m m m o o Checklist for Terminal Class ’UAT-PED-ALL’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 29 Specification Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-PED-ALL’ Test Cases applic. approval [8.3.7a] Handling of card accessibility after power failure cor- m rect [8.3.7b] Card accessibility power failure option: card accessible or card capture (access. or capt.) 9 Buzzer 9.1 Requirement for Buzzer [9.1a] Buzzer present m [9.1b] Clearly audible sound m 10 Communication 10.1 Requirement for Communication Component [10.1a] Communication component present [10.1b] Communication component options (DSL, GPRS, PSTN, ISDN, etc.) 11 Persistence of Program and Data Storage [11] Persistence of Program and Data Storage including cryptographic keys and init-data fulfilled Table 5 m m Checklist for Terminal Class ’UAT-PED-ALL’ Legend: m: mandatory r: recommended o: optional 17 - 30 © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-PED-CTLS’ 15 Specification Checklist for Terminal Class ’UAT-PED-CTLS’ Test Cases ep2 Terminal Model: applic. approval 2 Required Documents 2.1 Standards [2.1a] Electromagnetic Compatibility certificate provided m [2.1b] CE Certificate of Conformity provided m 2.2 EMV [2.2a] Compliance with EMV standard fulfilled m [2.2c] ‘EMV Terminal Type is 22 or 25 m [2.2d] EMV Type Approval Level 1 for PCD provided m 2.3 Security Evaluation Report [2.3a] Most recent PCI-PTS POI report provided m [2.3b] Security concept, security relevant technical data pro- m vided 2.3.1 PIN Pad Tamper-Evidence [2.3.1] PIN pad tamper-evident m 2.3.3 PIN Pad and Proximity Coupling Device (PCD) Configuration [2.3.3a] PIN pad and IFD are integrated or separated (int. or sep.) 2.4 SRED Terminal [2.4] SRED approved terminal o 3 PIN Pad 3.1 Requirement for PIN Pad [3.1a] PIN pad present 3.3 Operating of the PIN Pad [3.3] Cardholder can operate PIN pad 3.4 PIN Pad Keys [3.4a] Mandatory PIN pad keys present [3.4b] Additional PIN pad keys present 3.5 Reserved Colours for Command Keys Table 6 m m m o Checklist for Terminal Class ’UAT-PED-CTLS’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 31 Specification Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-PED-CTLS’ Test Cases [3.5] Colours mapping correct 3.6 Position of Command Keys [3.6] Position of command keys correct 3.7 Key Labelling [3.7] Key labelling of command keys is correct 3.8 PIN Pad Numeric Layout [3.8] PIN pad numeric layout is correct 3.9 Tactile Identifier for Key ‘5’ [3.9a] Tactile Identifier present 3.10 Privacy during PIN Entry [3.10a] Privacy during PIN entry ensured (acc. PCI-PTSPOI) applic. approval m m r m m m 4 Key Pad 4.1 Requirement for Key Pad [4.1a] Key pad present 4.2 Touch Screen [4.2] Touch Screen present 4.3 Types of Keys [4.3] Minimal key pad keys o o r 5 Display 5.1 Requirement for Display [5.1a] Cardholder display present 5.2 Display Size [5.2a] Minimal cardholder display size fulfilled 5.3 Graphic Display [5.3] Graphic display present m m r 6 Clock 6.1 Requirement for Clock [6.1] Clock present 6.2 Independence of External Current [6.2] Independence of external current fulfilled m m 7 Printer 7.1 Requirement for Printer Table 6 17 - 32 Checklist for Terminal Class ’UAT-PED-CTLS’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-PED-CTLS’ Test Cases [7.1a] Printer present [7.1b] Integrated or external printer, e.g. vending machine application (int. or ext.) 7.2 Printer Size [7.2a] Minimal printer size fulfilled Specification applic. approval m m 8 Card Reader 8.1 Contactless Card Reader [8.1a] Contactless (PCD) reader present [8.1b] Compliant with MC, Visa and AMEX 8.2 Accessability of Card Reader [8.2] Accessability of the card reader m m m 9 Buzzer 9.1 Requirement for Buzzer [9.1a] Buzzer present [9.1b] Clearly audible sound m m 10 Communication 10.1 Requirement for Communication Component [10.1a] Communication component present [10.1b] Communication component options (DSL, GPRS, PSTN, ISDN, etc.) 11 Persistence of Program and Data Storage [11] Persistence of Program and Data Storage including cryptographic keys and init-data fulfilled Table 6 m m Checklist for Terminal Class ’UAT-PED-CTLS’ Legend: m: mandatory r: recommended o: optional © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 33 Specification 17 - 34 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-PED-CTLS’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-NON-PED’ 16 Specification Checklist for Terminal Class ’UAT-NON-PED’ Test Cases ep2 Terminal Model: applic. approval 2 Required Documents 2.1 Standards [2.1a] Electromagnetic Compatibility certificate provided m [2.1b] CE Certificate of Conformity provided m 2.2 EMV [2.2a] Compliance with EMV standard fulfilled m [2.2c] ‘EMV Terminal Type is 22 or 25 m [2.2d] EMV Type Approval Level 1 for PCD provided m 2.3 Security Evaluation Report [2.3a] Most recent PCI-PTS POI report provided m [2.3b] Security concept, security relevant technical data pro- m vided 2.3.1 PIN Pad Tamper-Evidence [2.3.1] PIN pad tamper-evident m 2.3.3 PIN Pad and Proximity Coupling Device (PCD) Configuration [2.3.3a] Terminal and IFD are integrated or separated (int. or sep.) 2.4 SRED Terminal [2.4] SRED approved terminal o 4 Key Pad 4.1 Requirement for Key Pad [4.1a] Key pad present 4.2 Touch Screen [4.2] Touch Screen present 4.3 Types of Keys [4.3] Minimal key pad keys o o r 5 Display 5.1 Requirement for Display [5.1a] Cardholder display present Table 7 o Checklist for Terminal Class ’UAT-NON-PED’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 35 Specification Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-NON-PED’ Test Cases 5.2 Display Size [5.2a] Minimal cardholder display size fulfilled 5.3 Graphic Display [5.3] Graphic display present applic. approval m r 6 Clock 6.1 Requirement for Clock [6.1] Clock present 6.2 Independence of External Current [6.2] Independence of external current fulfilled m m 7 Printer 7.1 Requirement for Printer [7.1a] Printer present [7.1b] Integrated or external printer, e.g. vending machine application (int. or ext.) 7.2 Printer Size [7.2a] Minimal printer size fulfilled o m 8 Card Reader 8.1 Contactless Card Reader [8.1a] Contactless (PCD) reader present [8.1b] Compliant with MC, Visa and AMEX 8.2 Accessability of Card Reader [8.2] Accessability of the card reader m m m 9 Buzzer 9.1 Requirement for Buzzer [9.1a] Buzzer present [9.1b] Clearly audible sound m m 10 Communication 10.1 Requirement for Communication Component [10.1a] Communication component present [10.1b] Communication component options (DSL, GPRS, PSTN, ISDN, etc.) 11 Persistence of Program and Data Storage [11] Persistence of Program and Data Storage including cryptographic keys and init-data fulfilled Table 7 17 - 36 m m Checklist for Terminal Class ’UAT-NON-PED’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-NON-PED’ Specification Legend: m: mandatory r: recommended o: optional © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015 17 - 37 Specification 17 - 38 Checklist for Terminal Hardware Certification Checklist for Terminal Class ’UAT-NON-PED’ © 2015 eft/pos 2000, Version 6.3.0, November 30, 2015

Ep2 Minimal Hardware Requirements

Rating

Date

Size

Views

Categories

Share

Transcript

Forgot your password?.