With our customers' increased demand for support for mobile payment and digital wallet methods, including Apple Pay, VGS has a solution. VGS and Apple Pay enable merchants to extract data from an Apple Pay Token and route authorization transactions to their preferred processor, all while maintaining security.
What is Apple Pay?
Apple Pay is a mobile payment and digital wallet service developed by Apple Inc. that allows users to make secure, contactless payments using their Apple devices, such as the iPhone, Apple Watch, iPad, or Mac. These payments can be made in-stores, apps, and online. It replaces physical cards and cash with a safer, faster, and more private way to pay.
Why integrate Apple Pay with VGS?
Without VGS, a merchant has the option of either using a specific PSP to support Apple Pay or implementing a hands-on solution by manually decrypting the card information contained in an Apple Pay Token within their own systems. With this approach, the merchant is responsible for managing the security and storage of sensitive data that has been decrypted from Apple Pay. But the merchant also experiences significant benefits. By controlling Apple Pay flows, the merchant can now transmit Apple Pay tokens to multiple PSPs
VGS's Apple Pay and Digital Wallet integration offers a comprehensive solution for encrypting and securely storing sensitive information. VGS customers utilize their VGS Vault to store sensitive information that is decrypted from the DPAN payload, thereby keeping their systems and users secure while enabling multi-PSP Apple Pay transactions. By additionally leveraging VGS's Card Management Platform to handle Apple Pay Token decryption, a merchant can reinvest the time, money, and effort saved toward developing its core business.
How does it work?
When Apple Pay creates a token for a payment request, it creates a JSON payload with the sensitive payment data encrypted. To extract the encrypted data from the tokens and maximize your data utility, VGS has created an Apple Pay integration that allows you to decrypt the payload from Apple Pay (the "Apple Pay Token").
The encryption scheme surrounding Apple Pay requires configuration, including all the keys and parameters necessary to decrypt the token. The diagram below illustrates the data flow from a user's mobile device to VGS, where decryption and card data aliasing take place.
When a payment request to a Payment Service Provider (PSP) is required, the request will be proxied by VGS (Forward Proxy), where the raw card data is revealed, and then forwarded to the PSP for processing.
The Apple Pay solution offers a unique value proposition to our customers by enhancing security for sensitive data associated with wallet payments, managing their multi-PSP processing strategy for wallet transactions, and owning the data by storing it themselves. Our integration is as simple as enabling this solution on the VGS Integration Dashboard and following the setup steps listed here.
Product Team 
