Central Card Personalization Platform
bRUID Applet · ICBA Framework · HSM-Backed
Every card leaves the line
biometric-ready and fraud-proof.
bRUID cPerso is an enterprise card personalization platform that combines data preparation, key diversification, EMV script generation, and chip encoding - all backed by HSM-secured cryptography. With BNPRS's customizable bRUID applet provisioned onto every card, bRUID cPerso extends standard EMV functionality with ICBA biometric authentication, unifying security across all BNPRS products towards a zero-fraud payment ecosystem.
Parallel Encoding
Contact & Contactless
Zero Plaintext Keys
ICBA Applet Provisioning
BNPRS's bRUID (Biometric Real Unique Identity) applet is provisioned onto every card during personalization. Built in conjunction with the ICBA framework, bRUID applet extends standard EMV card functionality with biometric template storage - enabling authentication at the terminal (via BODA) or at the host level. This unifies security across AandhiPe mPOS, AandhiPe Kiosk, AandhiPe Mobile, and bRUID ACS towards our objective: a zero-fraud payment ecosystem.
bRUID applet is fully customizable per issuer. Extend EMV card functionality with biometric data elements, custom commands, and issuer-specific logic.
bRUID + ICBA creates a unified biometric authentication layer across all BNPRS products - from card issuance to transaction authorization.
Secure biometric data stored on the card's secure element. Verification at the terminal side (BODA) or host level - never on the chip itself.
bRUID cPerso provides personalization scripts for both local payment schemes and international card networks. Every card ships with bRUID applet - regardless of scheme.
From raw issuer data to a fully personalized, biometric-ready card - every step secured by HSM cryptography.
Parse issuer data, validate SCPM headers, verify checksums. Card-specific data extracted and formatted for encoding.
HSM derives unique per-card keys from master keys. Batch derivation for high-throughput production. KCV verification on every key.
bRUID applet provisioned with ICBA biometric capability. EMV scripts executed via APDU sequencing on contact or contactless interface.
22 audit fields captured per card. Cryptographic verification, MAC computation, and signed clearing files for compliance.
Bytecode-driven personalization scripts with 256-opcode VM. ATR-based card selection with wildcard matching. Up to 16 script parts per card profile.
Integrated with bRUID Kms for key management. Master keys never leave the HSM. Per-card key derivation, MAC computation, and encrypted key block export.
Contact (ISO 7816 T=0/T=1) and contactless (ISO 14443 Type A/B) support. Dynamic protocol negotiation with PPS for optimal card communication.
Up to 40 encoder stations running simultaneously. Win32 event-based head synchronization for maximum production throughput.
22 audit fields per card - chip status, serial number, ATR, PAN, CMS, personalization result, and print data. Full compliance traceability.
Checksum verification, reusable card detection, and automatic retry logic. Virtual reader support for offline testing and script validation.
Key management and cryptographic operations for card personalization.
Core processing platform that issues cards personalized by bRUID cPerso.
POS terminals that read bRUID applet for biometric authentication.
Terminal management for key injection of bRUID cPerso-prepared keys.
From single-card pilots to enterprise-scale production - every card leaves with bRUID applet, ICBA-ready, biometric-enabled.