Corporate

CORPORATE

IR

Information for Investors

will relocate to each operating company's site.

payment processing services

Comprehensive Online payment Services

PG Multi-Payment Service

Available payment method (32 domestic and international means provided)

Pay payment

Security measures

Various payment services

Business Growth Support

Financial Support

DX Support

See all services

Reduction of information leakage risk

Tokenization

This is a security service that can reduce the risk of information leakage by replacing the credit card number entered by the purchaser with another character string (token) to complete the payment by communicating with the customer.
Merchants can use Tokenization to process payment without touching their credit card number.


* The credit card number entered by the purchaser is linked to JavaScript and sent to the Company, and the Company replaces the number with another character string (token) and returns it to the member store, and the authorization is obtained from the card company in the form of tokens and amounts.

Challenges like this can be overcome.
It can be solved

  • I want to introduce payment to my service
  • I want to know the most commonly used payment method
  • I want to take security measures

Benefits of Tokenization

Reduction of information leakage risk

By using Tokenization, credit card payment can be processed without "processing" or "transiting" credit card information, as well as "saving" credit card information, reducing the risk of information leakage for merchants. In the unlikely event that the token is leaked, it is completely meaningless data in itself and will not be fraud on other sites.
This is one of the processing methods recommended in the "Credit Card Security Guidelines" compiled by the Credit Transaction Security Council.

Tokenization data flow

service_security-token_001_logo.png
  1. Display from the purchase screen
  2. Link from html to JavaScript and send card number
  3. Token return
  4. Send token
  5. authorization processing with token + amount
  6. Replace the token with a card number
    authorization processing
  7. Return of authorization
  8. Return of authorization
  9. Receipt page display

Precautions for Tokenization

  • Tokens have an expiration date

    The issued token becomes invalid once a certain period of time has passed or once it is used for payment

  • Supported Browser Environments

    Tokenization assumes a browser that runs JavaScript. On devices that do not use JavaScript (some feature phones, etc.), Tokenization will not be supported.

  • Credit card payment and Multi-currency credit card payment are supported

  • Non-Tokenization security measures

    Tokenization is one of the effective means to de-retain credit card numbers in the merchant system, but it does not completely eliminate the risk of information leakage.
    Since there is still a risk of leakage due to unauthorized external communication from various information input screens due to tampering with the member store's site, and the risk of leakage of personal information other than credit card numbers due to unauthorized access, it is necessary to take appropriate security measures according to the environment of the member store.
    (e.g., risk assessment, measures based on assessment results, in-house training, etc.)

Related Solutions