Eagle 8.0 Release Notes

Transcription

1 Eagle 8.0 Release Notes Eagle Technical Support Printed in U.S.A Teleflora

2 Information in this document is subject to change without notice. Companies, names and data used in examples herein are fictitious unless otherwise noted. While reasonable efforts have been taken in the preparation of this document to ensure its accuracy, Teleflora assumes no liability resulting from any errors or omissions, or from the use of the information obtained herein. No part of this document may be reproduced or transmitted in any form or by any means, electronic or mechanical, for any purpose, without the express written permission of Teleflora, LLC Teleflora, LLC. All rights reserved. Teleflora, Dove Network, Dove POS and eflorist Program are trademarks of Teleflora, LLC. Microsoft and Windows are registered trademarks of Microsoft Corporation. All other trademarks and service marks are the property of their respective owners. LMK January 2010 i

3 INTRODUCTION... 1 DATA ENCRYPTION KEY (DeK) MANAGEMENT... 2 USER LEVEL SECURITY... 2 PURGE CREDIT CARD INFORMATION... 2 NOTABLE CHANGES... 2 ii

4 INTRODUCTION Welcome to Eagle 8.0! These notes will help explain new security features within Eagle now required by the PCI Security Standards Council (PCI-SSC) in order to secure payment card data. Eagle 8.0 is going through the certification process to become a validated Payment Application Data Security Standard (PA-DSS) software application. Payment Application Data Security Standard (PA-DSS), developed by PCI-SSC and the payment card industry, are mandatory regulations created to secure payment applications to help merchants and agents mitigate compromises, prevent storage of sensitive cardholder data (i.e. full magnetic strip data, CVV, CVV2 or PIN data) and support overall compliance with the PCI Data Security Standard (PCI-DSS). In addition, these documents also reference another document, the Eagle PA- DSS Implementation Guide that goes into greater detail about the data security requirements for your shop. This document will be available once the system has been validated. Eagle 8.0 Release Notes 1

5 DATA ENCRYPTION KEY (DeK) MANAGEMENT In order to meet with PA-DSS requirements, Eagle 8.0 has added an Eagle Key Rotation Utility. This function is set up during installation and is in place to help protect your customers credit card information in the event that someone has attempted to access your records. Managers/Owners should access this utility per the guidelines set in the Eagle PA-DSS Implementation Guide. USER LEVEL SECURITY Eagle now has the ability to be operated by non-administrative users in all supported operating system environments. This means that operating system user is no longer required to be logged in as an administrator or have administrative permissions to use Eagle. It is recommended to configure your Eagle system with both Administrative and Non-Administrative users at the operating system level and only use the Administrative login when performing managerial tasks. For information on how to configure users in this manner, please reference the Eagle PA-DSS Implementation Guide. PURGE CREDIT CARD INFORMATION Eagle now allows you to purge sensitive credit card information that is no longer needed, in order to safe-guard against hackers and possible fines. Sensitive information includes the encrypted credit card number, the encrypted credit card expiration date and other private information. Only employees with Manager/Owner rights have the ability to purge this information. NOTABLE CHANGES Order search The order search has been updated to provide better results when searching for wire-in orders. FTD Confirmations A new code C has been added on the Mercury Ask and Answer message types. This will accommodate the FTD Confirmation Requirement. Order Card Activity Window The credit card numbers are now masked when viewing a card in the Order Card Activity window and during the Close of Day Postings Exceptions when a credit card authorization is needed. Eagle 8.0 Release Notes 2

6 Receipt Header Data Eagle now adds the following information to the receipt header automatically: store name, store number, address 1, city, state, ZIP code and phone number. The values for these fields are pulled directly from the Store Maintenance Screen at the time the receipt is printed. Credit Card Interface Now with Eagle 8.0, you only have to add a check mark to the checkbox under Credit Card Settings in the Store Maintenance Screen to enable the Credit Card Interface. System Monitor Icon When the Windows login is set as an Administrator and the user clicks on the System Monitor icon, a window will briefly display: Run System as an Administrator. When the Windows login is set as a Non-Administrator (limited account), and the user clicks on the System Monitor icon, a window will display requiring the Administrator login and password. Once these are confirmed the System Monitor will open. Eagle 8.0 Release Notes 3