Remote Key Injection (RKI)
XAC Remote Key Injection Solution is a PCI PIN 3.1 Certified and one stop RKI Solution. From CA Injection when terminal production, RKLD for Key Import, Key Generation, to Key Deployment, all can be done through XAC Cloud TMS II system to reach truly Server-Less instead of setting up a server in-house plus adding HSM.
-

Comprehensive PCI-Certified Security Architecture
PCI PIN 3.1 Certification
-
Remote Key Distribution Using Asymmetric Keys Operation
-
Certification & Registration Authority Operations
-
Key-Injection Facilities
-
-

Secure CA Injection During Manufacturing
During device production, XAC device send CSR directly to XAC’s CA server inside the XAC manufacturing environment.
This eliminates the need for a third-party bridge server.Benefits:
-
Faster production workflow
-
Reduced operational risks
-
No additional infrastructure or integration cost
-
-

Physical Key Loading Device for Enhanced Security
Instead of upload transaction keys to web portal, XAC provides Physical Key Loading Device.
This Physical Key Loading Device (RKLD) is handled by the key owner and stored in the existing secure room. Only been exposed when performing key generation & uploaded.
-

True Server-Less Key Distribution Powered by XAC TMS II
By leveraging XAC TMS II as a secure key package distribution platform, users can:- Schedule key replacement for specific devices
- Target device groups with controlled deployment
- No bridge between terminal and server needed
- Reduce complexity in communication between server, device, and host
This server-less architecture simplifies deployment and minimizes ongoing maintenance effort.
Operational Cost Savings for Customers

Remote key replacement for field-deployed devices

No PCI-approved secure room required for key renewal

Lower initial investment
