“Developer Resources” Posts

Why Integrate a Payment API?

Why Integrate a Payment API?

An API, or application program interface, is the set of protocols and tools that let different types of software interface with each other. Developers use APIs to avoid reinventing the wheel every time they want to offer a new feature. Facebook’s API allows users to log onto other sites using their Facebook login credentials, for example. Mailchimp offers a popular API for email list management. And as you may have guessed, PayJunction also offers an API for payment processing. In this guide, we’ll cover how a payment API helps businesses, and what features product managers and independent software…

Experiencing TLS Issues? Here's Why

Experiencing TLS Issues? Here's Why

Right now, if you’re using the Secure Sockets Layer (SSL) or Transport Layer Security (TLS) 1.0 protocols, you’re at risk for a data breach. A number of vulnerabilities have been found in this early encryption protocol, causing the card brands to require a security upgrade in order for businesses to meet the Payment Card Industry Data Security Standards (PCI DSS) moving forward. But first, what exactly is TLS? It’s a cryptographic protocol that helps establish secure communication between two systems. It authenticates the systems and protects the confidentiality of the information passing between them. This update…

Why Tokenization Is Better Than Point to Point Encryption

Why Tokenization Is Better Than Point to Point Encryption

Whether you’re a developer seeking an integrated payment solution or a business owner searching for a credit card processing partner, the security of cardholder data should be at the top of your checklist. When processing and storing credit card data via a terminal, the payment processing security standard can vary. Below, we compare the two current standards for securing cardholder data: point to point encryption and cloud-based tokenization. Point to Point Encryption vs. Cloud-Based Tokenization Point to point encryption (P2PE) encrypts data from point A, when a card is swiped or dipped in a terminal, until it reaches point…

5 Essential Features of a Payment API

5 Essential Features of a Payment API

If you’re an independent software vendor (ISV) who is evaluating payment APIs, you have much to consider. There might be a number of Payment Gateways seeking integration with your software; or maybe you want to offer your customers several partners to choose from, but you don’t know where to start. It’s important to integrate with the right payment provider because integrations take time to build. You don’t want to invest months of development work into a provider that will harm your customers with unethical billing practices, poor service or outdated technology. A bad experience for your…

What Defines PCI Scope?

What Defines PCI Scope?

Whether you’re a player in the payments space or a business processing credit cards, you’ve heard of Payment Card Industry (PCI) compliance. With the intention to optimize security around credit and debit card transactions and protect cardholder information, all parties involved in facilitating a transaction fall within PCI scope. This includes any system components connected to the cardholder data environment (CDE). Processing credit cards can involve many different components, so PCI scope varies depending on the breadth of an organization's CDE. Because of this, many businesses are unaware of the components they are responsible for and which even…