On-Device SAF

On this page:

SAF (Store and Forward) is currently supported by storing sensitive data on the POS system. To avoid this, Simplify 2.03.xxx supports On-Device SAF on Tetra devices. If this feature is enabled, Simplify will not send sensitive data to the POS.

Note:

  • On-Device SAF is recommended with OnGuard as the encryption mode, as Voltage is not valid for PCI-validated P2PE.

  • On-Device SAF requires a different configuration setting. If enabled, SAF on POS is no longer allowed.

On-Device SAF Transaction Lifecycle (Summary)

If enabled, On-Device SAF processing will occur when a supported transaction cannot process online due to a supported communications error. (These transactions will be referred to as SAF-eligible transactions.) Simplify will then process offline as follows (see On-Device SAF Transaction Lifecycle for details):

  • Perform Stand-in – Locally approve the transaction if no SAF limit is exceeded; else locally decline.

  • Send the result to the POS, including a SAF token. (No sensitive data.)

  • Write SAF token and data needed for resubmission to a SAF database. Simplify attempts to process the stored transaction through Fusebox until the transaction is resolved. A transaction is resolved when it receives a forwarded (host) response from Fusebox (used to update the database) or expires.

Note: Transactions processed through Stand-in and written to the SAF database (implying that a SAF Token was generated) will be referred to as SAF transactions.

Supported Transactions

  • Card Present

  • Sale, Refund, Auth Only

  • Credit AID (no PINblock)

Conditions leading to Store and Forwarding of a Transaction

  • Socket to Fusebox could not be opened.

  • Simplify timed out before receiving the financial response from Fusebox.

Modifications to Inquiry Process

  • POS does not send Inquiries for local declines. (Simplify handles all required processing).

  • For local approvals, the Inquiry request should include the SAF token (API 5073) from the original transaction response.

  • Since Simplify handles expiration of SAF transactions, the Inquiry response may indicate that the transaction has expired (either the card has expired, or the transaction is older that the configured number of days to keep pending).

  • If the Inquiry response indicates that the transaction has been forwarded approved, the POS can obtain the Fusebox token from API 5035.

note

If a transaction requires a token from a prior transaction that was locally approved, the POS should not send the transaction until the true (Fusebox) token has been received in an Inquiry response for the original transaction (i.e. until the transaction has been forwarded and approved).

For more information on the modified Inquiry process, see POS Inquiry with On-Device SAF Enabled.

SAF Reports

  • Available reports on SAF transactions are described in the Simplify Download Configuration Troubleshooting Guide under SAF Menu.

API Fields Only Used for On-Device SAF

Field #Field NameSizeData TypeDescription
5035Fusebox Token16-20NSent in Inquiry response for forwarded approvals.
5073SAF Record Key/ SAF Token20NFormat: aaaabbbbbbbbsssscccc
  • aaaa=first 4 chars of account number
  • bbbbbbbb=PIN Pad serial number
  • ssss=SAF sequence number (Simplify-generated)
  • cccc=last 4 chars of account number
5074SAF Database Fields and Fusebox Record1-99999A/NSent in Inquiry response when available:
Format: TTLLLLLVVVVV
  • TT=22
  • LLLLL = length of data
  • VVVVV = name1=value1;(etc.);
5075Total SAF Local Approved Pending Amount and Limit17C
  • Total SAF Local Approved Pending Amount (with refunds treated as positive amounts)
  • Maximum total amount of pending local approvals (configured value)
5076SAF Additional Data139-255A/N
  • Total SAF Local Approved Pending Count
  • Total Current Database Record Count
  • Maximum # of allowed database recs (configured)
  • Flash remaining
  • RAM remaining
5077SAF Additional Data221-255A/NFormat: TTLLLLLVVVVV
  • TT = “TT”
  • LLLLL = length of data
  • VVVVV = data
    • Total SAF Local Approved Pending Count
    • Total SAF Local Declined Pending Count

See sample messages for examples of these fields.