noun_Email_707352 noun_917542_cc noun_Globe_1168332 Map point Play Untitled Retweet

Power through the challenges of moving your payments to cloud

Time to dispel the mystery shrouding cloud solutions in card payments

Gatis Liepiņš / November 07, 2021

Although Public Cloud does provide significant advantages, cloud-based deployments are yet to become a commodity within the card payments processing space. In this blog we list several factors that slow down migration to public cloud to clear a bit of misconception, false expectations and lack of knowledge.

PCI-DSS requirements bring cloud deployment complexity to another level

It is a challenging task to design an infrastructure, tools, and procedures to be compliant with payments industry security standards. To ensure compliance with PCI-DSS requirements, you should be prepared for significant investments to build the solution design and knowledge base within operational teams.

Data location is limited by customer requirements

Data residency and sovereignty are important aspects for payment industry participants (especially within the EU region), when assessing overall solution security. Our experience shows that with proper planning, design, and implementation it is possible to assure required data protection levels. This concerns both the data residency and security, where various legal and regulatory requirements (e.g., PCI-DSS) need to be taken into account.

Network latency becomes a factor when building distributed systems

When moving into hybrid cloud environment (by lift-and-shift approach), initial customer expectations regarding overall solution performance might prove to be overestimation at best. Careful deployment planning is required to minimize the latency impact on mission critical online systems. It is worth noting that latency impact is directly linked with software architecture and data volumes the solution must process. The higher the transaction volumes, the more effort must be put into cloud-based deployment design.

Latency depends not only on physical distance, but on the network infrastructure stability, as well. Public, shared network might not be sufficient for backbone data transfers within distributed software systems. Dedicated infrastructure with isolated channels and controlled setup is a solution to achieve guaranteed data throughput and low latency levels required by mission-critical online software systems.

Compliance is key when creating remote access

Distributed systems introduce a need for remote access. These access channels must be formed so that they are compliant with PCI-DSS requirements, even if routed over public network infrastructure.

Cloud providers lack services that are specific to the cards processing industry

There are several items that are specific to cards processing solutions and not met in any other industry. For instance, none of the public cloud companies provide payment HSM and Visa/MasterCard connectivity devices as a service. To accommodate these, you need to review co-location options, for example cooperation with private data centres. Another option is to host said devices in your own data centres, but this increases the PCI-DSS certification scope.

The good news is that with constant push from the industry, we do expect to see payment HSM and Visa/MasterCard connectivity devices becoming available as a service in major cloud provider portfolios. Until then, many of our customers in the Nordics have chosen TietoEVRY private cloud HSM hosting and management services with considerable success.

How to build an application architecture that helps to gain the full advantages of the cloud? Read our next blog and find out . 

Related blogs

3 reasons to bring your payment application to Public Cloud

Fast setup, automated processes, and ease of procurement – time to gain the benefits of public cloud for the payments industry

Read blog

Power through challenges of moving your payments to cloud

Time to dispel the mystery shrouding cloud solutions in card payments

Read blog

Time to tap into the potential of Public Cloud

What to consider in the deployment and application architecture? The true power of the cloud only manifests itself when combined with a cloud-ready software solution

Read blog

 

Gatis Liepiņš
Senior product manager

Passionate about optimizing complex software solutions with inovative methods and services to support banks and financial institutions to focus on their core business.

10+ years experience of card switch implementation, technical account management and solution architecture provides a knowledge base required to support TietoEVRY customers in public cloud and the SaaS journey.

Share on Facebook Tweet Share on LinkedIn