Let Your ID Lead the Way
Imagine…a revolutionary SaaS product with a single eco-system for managing and using all your ID credentials and vertical applications. With a cloud solution keeping all your apps updated across all devices.
Imagine…a first of its kind payment plan that lets you use all of the features the system has to offer and only pay for what you us, leaving edition levels a thing of the past.
Introducing CardExchange® Cloud Suite, a suite of products bringing you a modernized approach to today’s ID management and security demand. By using a proven secure technology platform, a system trusted by leading companies worldwide, letting you focus on using innovative applications, instead of managing infrastructure.
CardExchange® Cloud Suite offers a suite of online products to create easy and efficient credential management solution to meet your ID and card issuance needs. With this centralized cloud-based solution you get full control anywhere in the world. The CardExchange® Cloud Suite offers six different SaaS products to choose from to create the ultimate solution for any organization. CardExchange® Cloud Suite is the first of its kind to offer an ID card management system that allows you all current industry standard functionalities while only paying for what you use. We offer a fully dedicated enterprise ID enrollment solution that is scalable to fit any organization. It is the first to offer an easy, online, subscription-based solution where you are not paying for an empty database, you simply pay for the records that you need...Thats it!
CardExchange® Cloud Suite is built on the trusted Microsoft's Azure infrastructure, using proven technologies offering the highest security standards.
Following the highest standards in data protection, our suite solution follows GDPR standards. Our hosting options are enclosed instances, no data travels to other hosting locations or shared.
CardExchange® Cloud Suite products allow you to personalize your system to meet your unique needs. From creating your own business rules and workflows to user profiles, you can make sure it meets every need.
CardExchange® Cloud Suite provides you with a go-anywhere Software as a Service (SaaS) solution, with ability to scale to meet your organizations needs.
Our Available Products
CardExchange® Controller is a online credential management software and the heart of our cloud suite of products. This next generation cloud software streamlines every step your ID issuance process. From personalized business rules and workflows to lifecycle management and production of physical and digital IDs, all you need for the perfect credential mangement system.
CardExchange® Stand must be used with the Controller. It is a online self-service portal for all your credential holders. Give more control to your credential holders by giving them access to our Stand App to upload their photo, upload identification documents, update information, receive notifications, activate or block their ID, and use a Virtual or Digital ID.
CardExchange® Press is a desktop software dedicated to the Controller. Create the perfect ID card design with our enhanced feature card designer. With a pre-defined connection to CardExchange® Controller, you can easily see all your records in the cloud and setup your print production. Once card production is done, all records in the Controller are updated.
CardExchange® Bridge is an add-on to the Controller and is used when you want to connect directly to your data source(s). Whether you need to connect to an API or SQL database, the Bridge has different options to seamlessly integrate the with your existing systems.
CardExchange® Secure is a Single Sign-On authentication process that allows users to login to multiple applications with a single set of credentials. It allows you to integrate and authenticate your account using external identity providers. Increase user experience and improve IT security with Secure.
for EVERY Organization
CardExchange® Cloud Suite offers powerful tools for secure ID management processes within your organization. Create consistency in your issuance, re-issuance, and renewal process with our custom-configured workflows.
Instant IDs are essential to most organizations. By adding a CardExchange® Stand subscription to your solution you can implement a Virtual or Digital ID into your organization. Instantly deliver branded Virtual or Digital IDs to our Stand App create a perfect mobile ID. Instantly block an ID to prevent unwanted entry at any of your locations.
Once your cardholder data is complete you can send production of cards to central or decentralized printing stations. With CardExchange® Press you can load on any computer with internet and connect to your cloud database to expedite delivery of your cards. Add Digital & Virtual IDs to get your IDs active and usable in minutes.
Easily synchronize your data from your current systems. Whether connecting to a database or an API, our CardExchange® Bridge offers and easy way to keep your data in all systems up-to-date.
Manage your card lifecycle from enrollment to end of use. Make sure at all times you have only one active physical card and immediately update your back offices if a card is lost or stolen with real time card status updates by your card holders.
CardExchange® Cloud Suite is hosted on Microsoft Azure™ and is based on the structure as you can see in the presented diagram. The processes of authentication and data are running at your hosting location of your choice and all these services are offered via a single point of access called the Application Gateway.
The Application Gateway receives the client request and directs them through the Web Application Firewall (WAF) to the correct service on Azure™. The Web Application Firewall analyzes the content and takes care that suspicious requests are being blocked, to avoid attaches that could compromise the system.
Hosted and built on Microsoft Azure™ we use their proven technologies to guarantee high level security, speed and productivity. With the ultimately flexibility in choice where your data is hosted, we offer hosting locations throughout the world for you to choose from when signing up.
To be able to respond quickly to specific customer needs and offer high speed, secure applications, the development platforms for CardExchange® Cloud Suite have been specifically choosen to do the job.
The CardExchange® Cloud Suite back end is a .NET Core web API. It translates requests from the client into SQL queries and sends them to the database, after which the results are sent back to the client in an appropriate format.
Azure™ Key Vault helps safeguard cryptographic keys and secrets that cloud applications and services use.
Without proper protection and management of the keys, encryption is rendered useless. Key Vault is the Microsoft-recommended solution for managing and controlling access to encryption keys used by cloud services. Permissions to access keys can be assigned to services or to users through Azure™ Active Directory accounts.
Key Vault relieves organizations of the need to configure, patch, and maintain hardware security modules (HSMs) and key management software. When you use Key Vault, you maintain control. Microsoft never sees your keys, and applications don’t have direct access to them. You can also import or generate keys in HSMs.
CardExchange® Cloud Suite only supports Https connections using TLS1.2 or higher.
Following the highest standards in data protection, our suite solution is based on GDPR, currently known as the highest protection regarding personal data. Our hosting options are enclosed instances, no data travels to other hosting locations.
To offer the highest user authentication but at the same time flexibility for your users, CardExchange® Cloud Suite uses authentication based in IdentityServer4 for managing access to all our applications and offers authentication with your Microsoft, Google, Facebook, or any Open ID Connect supporting system.
Microsoft® uses the Transport Layer Security (TLS) protocol to protect data when it’s traveling between the cloud services and customers. Microsoft datacenters negotiate a TLS connection with client systems that connect to Azure services. TLS provides strong authentication, message privacy, and integrity (enabling detection of message tampering, interception, and forgery), interoperability, algorithm flexibility, and ease of deployment and use.
Transparent Data Encryption (TDE) is used to encrypt SQL Server, Azure™ SQL Database, and Azure SQL Data Warehouse data files in real time, using a Database Encryption Key (DEK), which is stored in the database boot record for availability during recovery. TDE protects data and log files, using AES and Triple Data Encryption Standard (3DES) encryption algorithms. Encryption of the database file is performed at the page level. The pages in an encrypted database is encrypted before they are written to disk and are decrypted when they’re read into memory.