NACCU Logo

Terminology Guide

A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

A

Access Control System – See Door Access Control

Activity or Event – A campus card system transaction can commonly use activity or event flags to verify status or membership. For example, if a fee must be paid to use health or fitness facilities, the campus card system would set activity/event flags on student records where the fees have been paid. Then a simple card swipe on a terminal in the fitness facility would quickly check to verify if a student was eligible to use the service or facilities. A valid transaction would indicate that fees have been paid, while an invalid transaction would deny entry. Activity/event flags can be configured for a specific date range (e.g., a semester), or in some cases may be programmed for a certain number of uses, similar to a traditional board meal plan.

Alarms – A system event on a door access control system that requires attention by an operator. Commonly, alarms are caused by doors being held open for too long, doors being opened without a valid card swipe, or request to exit signal. Other types of alarms can indicate out-of-range temperatures, water leaks, or other issues. Many types of sensors can be monitored by an alarm panel.

Alarm Point – A defined location that is being monitored by a sensor. In a typical door access control system, a specific door may be defined as an alarm point. Other alarm points may include sump pumps, freezer or incubator sensors, or property tags.

Alarm Monitoring – The act of monitoring a system for alarm conditions and responding appropriately. Alarm conditions may require an operator to acknowledge an alarm by pressing a key or typing a message.

American Bankers Association (ABA) – The association known for creating the initial standards for encoding on track 2 of magnetic stripes. See www.aba.com for additional information. Encoding standards are now primarily managed by the International Standards Organization (ISO).

American National Standards Institute (ANSI) – A 501(c)3 private, not-for-profit organization which lists their mission as, “To enhance both the global competitiveness of U.S. business and the U.S. quality of life by promoting and facilitating voluntary consensus standards and conformity assessment systems, and safeguarding their integrity.” ANSI manages the application, approval and issuance of the eight-digit Issuer Identification Numbers (Issuer Identification Number or IIN) used for information exchange between parties for clearing and settlement. The application link can be found here. Until a point in 2017, ANSI issued 6-digit Issuer Identification Numbers. Additionally, NASI provides accreditation assessments serves as the official U.S. representative to the International Organization for Standardization (ISO). https://www.ansi.org/

Android Device – Refers to a smart phone running Android version 5.0 with NFC capability. Android devices that meet these criteria can be configured to load a Campus ID and can be used for door access or payment wherever a physical card is accepted.

Annunciator, Annunciator Panel – A device that is part of a door access system that indicates an alarm condition through lights or sound (siren or beeper). A typical annunciator would be a siren placed near a door that would sound if the door was held or forced open.

Anti-Pass-Back Control – The ability to control, via an application, multiple uses of a card to access a door or facility. A typical anti-pass-back control includes both entry and exit card readers and requires the card to be swiped to exit, before being swiped again for entrance. Anti-pass-back controls may also include a time period between swipes (e.g., once a card is swiped for entry, that same card cannot be swiped again for 30 minutes).

Apple Device - Refers to either an iPhone 6 or later or Apple Watch series 1 or later which can be configured to add a Campus ID to Apple Wallet on a device. Apple devices can be used for door access, mobile deposit or payment wherever a physical card is accepted.

Automated Clearing House (ACH) – The Automated Clearing House is a financial network in the United States that, among other things, processes a large volume of automated debit transactions. eCheck transactions, where a customer supplies a personal bank account number and bank routing number, are commonly referred to as ACH transactions. ACH transactions can either withdraw (payment) or deposit funds into the specified account. ACH transactions take approximately 48 hours to settle or clear, and, unlike credit card or debit card transactions, they are not guaranteed payments (there is no real-time authorization or funds checking). The processing fees for ACH payments are usually lower than credit card processing fees. Because of this cost savings, some schools are beginning to accept ACH payments for online deposits into campus card meal plan and flexible spending accounts.

B

Bank Card – Generic name for a bank-issued credit card and/or debit card (or check card). Cardholder account information is usually encoded on both tracks 1 and 2. Point of sale card terminals usually read track 1, or track 2, and sometimes both.

Banking Program– A component of a campus card program that integrates the use of the university ID card with a commercial banking program. Two different models of integration are common (see below). In many cases a bank customer service center or branch is located within or in close proximity to the campus ID card office. The bank may provide other services to the school, such as helping with the automated disbursement of student aid. Banking program contracts usually provide some type of revenue stream to the school in exchange for providing access to the university customer base.

PIN-Based Transaction Cards – In this model the ID card is linked to a commercial bank account and used as a PIN-based point of sale and debit card. The card is branded with the debit card networks (e.g., Plus, Star) and usually also has the bank's name and logo on the back. Funds are withdrawn from the related bank account and a PIN must be entered each time the card is used. These types of cards are not branded with MasterCard or Visa logos. All transactions are processed via the debit networks.

Signature-Based Transaction Cards – In this model the ID card is linked to a commercial bank account and is branded with either a MasterCard or Visa logo and can be used at any point of sale where the brands are accepted. Funds are withdrawn from the related bank account and the cardholder may have to sign for the purchase (depending on the amount). The transaction is processed via the credit networks.

Bar Code – A series of narrow bars of varying widths combined into group that represents unique numbers, letters, or characters. Barcodes are read by a beam of light from a bar code reader, translated into electrical signals, and then converted into specific numbers, letters, or characters for use by card readers and POS terminal scanners. Bar codes are commonly used on retail packaging and may also be used on ID cards. Many library circulation systems also use bar codes; however, bar codes are increasingly being replaced for small RF chips.

Bar Code Reader – A device that identifies and decodes bar codes for use by card readers and POS terminals. Bar code readers use lasers to scan the bar codes. Scanners may be handheld guns, sit on a counter, or be built into a retail counter. Many Point of Sale terminals integrate bar code readers to facilitate ringing up products with a scan rather than pushing a specific key.

Board Plan – A type of meal plan used in a campus card system that defines a set number of meals a cardholder may use during a given period (i.e., week, month, semester). Each time the cardholder enters the dining facility the card is swiped and one meal is deducted from the account. This plan is commonly used in "all you care to eat" dining facilities and may be used for limited options in retail dining facilities. Unused meals are usually forfeited at the end of the period.

Bits per Inch – A measurement of data density on the magnetic stripes of ID cards, and, more generally, on any linear magnetic storage media. Most financial cards use the following bit densities: tracks 1 and 3 - 210 bits per inch, track 2 - 75 bits per inch.

C

Cardholder – Any individual who is issued a campus credential (e.g. plastic card, mobile card or wearable) and participates in the plans, services, and activities regulated by the program.

Card Format – Where an institution/card program defines the type of card being used within the transaction system along with other credentialing features such as site code, card number length and issue code.

Card Lifecycle Management (CLM) – Various states of a cardholder’s credential(s) such as active, lost/stolen, damaged, provisioned, suspended, or removed.

Card Production – The act of producing plastic ID cards. Normally this would include vetting a cardholder's identity, taking a photo, printing and testing an ID card, and issuing it to a cardholder. From start to finish this process may take 3 to 5 minutes. Some institutions accept cardholder photos via email or web, uploading and producing cards before students arrive on campus. In this scenario cards can be issued more quickly (although identity vetting must still be conducted when the card is issued).

Card Reader, Card Reader Terminals, Edge Device – The components of a card reading system that reads information stored on an ID card or badge to initiate the processing of a transaction. Some card readers may have little intelligence and simply transmit the card information to the host for processing. Other card readers are complex computer terminals that process and store the transaction information and, in some cases, write information back to the card. Card readers consist of different technologies and include magnetic stripe readers, bar code readers, radio frequency, and many varieties of contact and contactless integrated circuit card readers. Depending on the type of reader the card may need to come in physical contact (swipe, tap, insert) with the reader or simply be close by or visually present. Card readers are commonly integrated into point of sale terminals.

Card Security Code, Card Verification Data, Card Verification Value (CVV, CVV2) – A code usually printed on the back of a financial bank card that a merchant may ask for while conducting an online or telephone order. The security code helps the merchant reduce fraud by verifying that the cardholder placing the order is actually in possession of the card and not using a stolen number or an account number obtained by fraudulent means.

Card Stock – Plastic stock used to create ID cards, usually with dye sublimation printers. Card stock can be manufactured with different types of plastic, which can affect durability and performance (see below). Card stock can be blank or fully or partially pre-printed during manufacturing. Pre-printing of some elements can be desirable in that offset printing delivers a higher print quality than most dye sublimation printers. Also, the card core can be pre-printed and coated with a clear plastic overlay, improving durability. The plastic stock can also be ordered in a variety of colors and incorporating various technologies, including magnetic stripes, radio frequency (RF) antennas, and/or integrated circuit chips. Card stock that is delivered with a pre-encoded magnetic stripe, an RF chip, or integrated circuit is serialized with a unique identifier.

PVC Card Stock – A card stock composed of 100% polyvinyl chloride. PVC is a relatively brittle solid plastic card stock used for various types of cards, including ID cards. PVC card stock is usually less expensive than composite card stock.

Composite Card Stock – Composite card stock is commonly a mix of PVC and polyester. The stock can be purchased in varying percentages of the two materials (e.g., 80/20, 60/40). Composite card stock is usually more flexible and less brittle than 100% PVC card stock and is usually more expensive than 100% PVC cards.

Cash Stripe – see Debit Stripe

Check Card, Bank Debit Card – A bank-issued card, usually branded with MasterCard or Visa, that allows the owner to make purchases at points of sale that accept MasterCard/Visa. The transactions are processed via the credit card payment networks and a signature may be required to complete the sale (a PIN is never required). Funds are withdrawn directly from the owner’s bank demand deposit account (checking account).

Coercivity – The level of intensity of the applied magnetic field required to reduce the magnetization of a material to zero. Most campus ID cards are encoded with high coercivity (4000 Oersted) that makes them resistant to becoming accidentally de-magnetized by common magnetic sources. This is also sometimes referred to as high energy encoding. Low coercivity (300 Oersted) cards can become damaged by even brief contact with a magnet.

Contactless Cards – Any variety of ID cards that use radio frequency (RF) to communicate with a card reader and do not have to come in direct physical contact with the reader. Although proximity cards are technically contactless, the term contactless cards is commonly used when referring to smart cards with integrated circuits that also use RF communications.

Control Board, Controller – The integrated electronics for a door access control system that monitors various door conditions (inputs) and can activate a multitude of devices (outputs) based on software programs. A controller board is connected to the network and may manage one or multiple doors in a building.

Commission Rate – The fee charged to a merchant for processing ID card transactions. The commission rate is usually determined as a percentage of a sale or transaction. For example, for a commission rate of 3%, a merchant would pay the card program 3% of all sales they processed with campus cards. Commissions can be used with off-campus merchant program and on-campus departments/merchants as well. Some programs use a standard commission rate for all merchants, while others have varying rates for different merchants or for merchant categories. The commission rate is usually specified in the contract between the card program and the merchant.

Conference Cards – Non-photo, usually low-cost, serialized plastic cards or contactless technology such as wearables that are issued to short-term conference groups and used for meal plans, residence door access, and other required campus activities. The credentials may have all or part of the card number printed on the face of the card and may have program logos, names, and attractive two- or four-color designs. The type of credential used (magnetic stripe, proximity, smart cards, wearables) depends on the campus card system in place. Some programs recycle credentials from one conference to the next, while other programs allow conference guests to keep the credentials as a souvenir.

Copier Application – Installation of card readers on copier machines so that ID cards and/or credit cards can be used to make copies without cash. Most modern copier units have an interface that allows for easy integration of card readers with the machine. Most copier applications allow for charging different prices for cash sales vs. card sales. In most applications all sales are tracked by the reader and transmitted to the host for reporting. Copy sales may be conducted either offline or online, with the trend toward online. On-campus copier services may be managed by a vendor or a university department.

Credit Card – A bank card that is used for purchases, based on the cardholder's promise to pay for the balance of outstanding purchases at a later date. Credit cards are branded with one of the major credit networks (e.g., Visa, MasterCard, Discover, American Express).

Credential – Represents the various types of campus card formats including plastic card, mobile card and wearables used for verifying a person’s identity.

Credit Limit – A limit placed on a cardholder account that will prohibit spending once the limit is reached. Most campus card financial applications use debit accounts where funds must be available before they can be used and balances are drawn down towards zero. Some institutions do allow for credit accounts where the balance begins at zero and is then drawn into the negative. In this scenario a credit limit might be used to limit spending on the account. Credit applications require the regular billing of cardholders and are most commonly used with departmental accounts.

D

Debit Card, Check Card – A bank card, used for purchases, that withdraws funds from a checking account. The card may also double as an ATM card. Debit cards may be either PIN-based cards or signature-based cards (determining how transactions are processed). In the past the term referred to non-ID cards that were issued for offline vending and copier applications where the account balance was read from and written to the magnetic stripe by the card reader. In some cases, the magnetic stripe was referred to as a junk stripe. These types of cards are rapidly being phased out and replaced with online applications.

Debit Stripe – The one-eighth-inch-high read/write magnetic stripe used in debit cards, encoded with a cash reservoir for use with offline vending and copier applications. Stand-alone debit magnetic stripes are not as common as they used to be in campus card systems and have been replaced by two or three track stripes used for online financial transaction systems. This stripe is also commonly referred to as a junk stripe or cash stripe.

Declining Balance Account, Debit Account – A cardholder account containing a pre-deposited amount of funds that declines as the card is used to purchase goods and services. A single cardholder may have one or more declining balance accounts associated with their card (e.g., meal plan, flexible spending, vending). Cardholders can easily replenish the accounts by making deposits at a point of sale terminal, kiosk, or online application. Declining balances funds are usually expressed in dollars and cents but can also be referred to as points, with a penny equaling a point. Board meal plans are a special type of declining balance account where each unit equals a single meal (access to a dining facility).

Declining Balance Plan, Debit Plan – The rules in a campus card system that define how cardholders can use funds in their declining balance account. Declining balance plans may have beginning and end dates, rules for when the plan can be used in different locations, and maximum limits on individual transactions or daily transaction limits.

Degaussing – The process of erasing information encoded on magnetic media, including ID card magnetic stripes. ID cards (especially those encoded with low coercivity) can become accidentally degaussed by coming into contact with, or close proximity to, common magnetic sources.

Direct-to-Card Printing (DTC) - Direct-to-card printers, often regarded as the entry point to badge printing, employ a printhead to apply monochrome or color ribbons directly onto the surface of an ID badge. Utilizing YMCKO (yellow, magenta, cyan, black, and overlay), this method involves multiple passes to achieve the final image. DTC printers typically offer up to 300 DPI resolution for color-printed images, with some models reaching up to 1,200 DPI for monochrome (black text only) prints. From minimizing expenses with a straightforward ribbon supply to offering faster printing speeds and user-friendly operations, DTC printing is a good choice for organizations seeking cost-effective, efficient, and accessible badge productions. 

Disaster Recovery Plan – A plan to provide for continuity of service for a card system in the event of a significant disaster or disruption (e.g., fire, flood, extended electrical outage). Disaster recovery plans may include on-campus redundant servers, network connections, off-site and regularly backed-up server facilities, and offline transaction processing. Each disaster recovery plan will be unique based on the details of a particular installation or card system environment.

Door Access Control, Facility Access Control System – Any system used to monitor, regulate, and report on access to entrances and exits to facilities. Such systems may use a variety of techniques to perform these functions: card readers, monitoring of door positions and locks, as well as alarms that report on unusual conditions such as held-open doors or forced entries. When integrated with campus card systems, the ID card can act as the authorization device for entry into a building or room. These systems also have extensive logging and reporting capabilities. Increasingly video surveillance systems are being integrated with card access systems to record video of persons entering and exiting facilities. Video surveillance may be integrated in such a way as to activate recording when cards are used to enter a building or the door controller senses an exit signal. Door access systems may be dedicated systems or a module of a broader campus card system.

Door Position Switch – A magnetic switch, usually mounted in the door jamb, that reports the position of the door (either open or closed) to an access control board.

Double Swipe – The act of swiping a card twice in quick succession. In some access control systems specific cards can be programmed to perform specific door functions when double swiped (e.g., override the door schedule and manually lock or unlock a door for a period of time).

Dye Sublimation Printing – The common process of printing ID cards with a printer that uses heat to transfer dye directly onto the plastic card stock. Dye sublimation printers use multi-panel ribbons with yellow (Y), magenta (M), cyan (C), and black (K) and may also include clear overlay panels (T) or laminates adhered overtop of the printing for protection. Ribbons are designated by number of panels and the corresponding letters. A YMCK ribbon would have four panels, whereas a YMCKT would have five panels (addition of the clear overlay). Used ribbons from dye sublimation printing of IDs need to be disposed of securely because they will show the information that was printed on the ID cards, including names and ID numbers.

E

eCheck - see Automated Clearing House (ACH)

Edge Device - For mobile card, an edge device reader is used to unencrypt the card number to initiate the processing of a transaction.

Encoder – A device for encoding information on the magnetic stripe of an ID card. Encoders can be programmed to encode data on tracks 1, 2, and 3 based on the encoding templates. Some encoders are stand-alone devices, while others are designed to work with a personal computer program (instructions for encoding the card are sent from the computer to the encoder swipe).

Encoding – The process of writing data to the tracks of a magnetic stripe card.

Encryption – The process of using an algorithm to transform information from plain text to a format that is readable only by someone possessing a key or password. Sensitive financial information is commonly encrypted in databases and in transmission across open networks. Standard magnetic stripe cards used for financial transactions do not encrypt data on the magnetic stripe and are therefore easily read and copied.

End Sentinel – A special character encoded on an ID card that indicates the end of the track encoding. The end sentinels for tracks 1 and 2 are both commonly a question mark (?).

EV1 vs EV2 vs EV3 - When comparing MIFARE DESFire EV1, EV2, and EV3, the key differences lie in their security levels, application flexibility, and reading distance, with EV3 offering the most advanced features, including higher security, more application capacity, and a greater read range compared to its predecessors, EV1 and EV2; essentially, EV3 is considered the most advanced version of the technology, while still maintaining backward compatibility with older versions. 
       Key points of comparison:

  • Security:
    1. EV1: Lower security level, typically with EAL4+ certification. 
    1. EV2: Improved security with EAL5+ certification. 
    1. EV3: Highest security level, also with EAL5+ certification, incorporating advanced cryptographic features. 
  • Application Flexibility:
  • Read Range:

       Overall:

  • For basic applications with limited security needs, EV1 may suffice. 
  • For applications requiring higher security and greater application flexibility, EV2 is a good choice. 
  • For the most advanced security features, expanded application capacity, and best read range, EV3 is the recommended option.“

F

Flexible Spending Account – A campus debit card account that can be used to purchase many types of goods and services that may include dining services, vending, copier, and laundry as well as bookstore and other retail services. Some flexible spending accounts are also accepted at off-campus merchants. Schools commonly brand their flexible spending accounts with a marketable name that is associated with the institution.

Forced Door Alarm, Forced Alarm – The condition created by a door access control system when a door is opened without a valid card read signal or request to exit signal being received by the door controller, indicating that the door may have been forced open.

G

General Data Protection Regulation (GDPR) - The General Data Protection Regulation (GDPR) is a regulation in European Union law on data protection and privacy for all individuals within the EU. It addresses the export of personal data outside the EU also, so it may impact your campus card administration process system. The GDPR aims primarily to give control back to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

Ghost Image – A smaller version of the original photo image on an ID card that is generally printed semi-translucent. Ghost images are made possible by ID card design software that will allow for the ghost image to be added to the plastic card during the printing process. A ghost image is an anti-counterfeit measure that does not generally add to the cost of the printed card.

 

H

Held Alarm – The condition created by a door access control system when the door controller senses that the door has been opened longer than the programmed held time.

Held Time – The defined length of time, usually in seconds, that a door can be open before the door controller registers a held alarm. Each door in an access control system can be configured with a door held time. The held time must be long enough to allow for a normal entrance or exit and door closure sequence.

High Energy Coercivity (HiCo) – See Coercivity

High Energy Encoding – See Coercivity

Holographic Overlay – A specially designed overlay that includes a holographic (or three-dimensional image). The overlay is adhered to the card overtop of the printing and photo image and serves as an anti-counterfeit measure, making the ID card difficult to duplicate. The holographic images are usually the school's identity logo. The overlay also adds protection for the printing on the card.

I

ID Card – A plastic card that is used to ascertain identity of the cardholder and that may be used in a variety of campus card system applications. ID cards should clearly identify the cardholder and the issuing institution and include basic information such as photo, name, and status. Some institutions op to print an identification number and a card number on the face of the card. ID cards commonly include one or more technologies that allow the card to be read by a card reader. Technologies may include a bar code, magnetic stripe, radio frequency antenna, or integrated circuit. Some of these technologies require the card to come in physical contact with a reader, while other technologies may only require the card to be close to the reader (contactless). In a campus one-card system, a single ID card is used for multiple purposes such as meal plans, flexible spending, facility access, library circulation, and more.

Identity and Access Management (IAM) – The practice of provisioning and managing digital identities and related credentials, as well as the provision and de-provision of the access to appropriate digital assets (data and application) via the credentials. It includes services for authentication (determining identity) as well as authorization (providing access to services). ID cards are considered identity credentials and many campus ID card offices provide essential identity vetting and proofing services.

Identity Vetting, Identity Proofing – The act of verifying a person's identity by cross checking various bits of identity data (e.g., name, address, birth date, photo) from multiple sources such as institutional databases and secondary forms of ID (e.g., driver’s license or another government-issued ID card). It is critical to properly establish identity before issuing an ID card to prevent identity theft or other types of fraud.

Insertion Reader – A type of card reader in which the ID card is inserted into a slot in order to be read. Some insertion readers use motors to draw in the card and then eject it at the end of the transaction. Many automated teller machines use this type of technology. Insertion readers, especially motorized units, have many moving parts and are more likely to fail and jam cards than swipe readers.

Interface – A link, consisting of both software and hardware components, that makes possible the exchange of information between two disparate systems. Campus card systems are commonly interfaced to many other university systems to support a variety of applications and services. A common interface, present in almost all campus cards systems, is the interface to the university student information systems to allow updates on new students and changes in student status.

International Organization for Standardization (ISO) – ISO describes their services as, “Create documents that provide requirements, specifications, guidelines or characteristics that can be used consistently to ensure that materials, products, processes and services are fit for their purpose.” ISO issued the ISO/IEC 7812 Numbering System utilized by ANSI in issuing an IIN number often used by higher education card/transaction systems as the card number schema for either a plastic or mobile card credential. https://www.iso.org/home.html

ISO number – A number that has a valid six-digit prefix that has been registered with the American National Standards Institute (ANSI) per the ISO/IEC 7812 numbering system standards. Many campus card systems, especially those that have banking programs, use this type of card numbering schema. Any institution can register with ANSI and be issued a six-digit identification number (INN). Once the INN has been issued the institution can guarantee that any card numbers starting with those six digits are unique, facilitating use in an international environment (such as financial transaction processing). Campus card numbers using this type of number are commonly sixteen digits in length, with the first six digits being the INN. In the financial world the INN is also commonly referred to as the BIN (Bank institution identifier).

Issuer Identification Number (IIN) – ISO/IEC 7812 Numbering System which uniquely identifies a card issuing institution in an international or closed environment. Universities generally utilize the International Interchange version which is an 8-digit number where each card issuer is entitled to one IIN. An IIN is used to only identify the card issuer as information is exchanged between an acquirer and issuer for clearing and settlement.

J

Junk Stripe – see Debit Stripe

K

L

Laundry Application – A common campus ID card application where card reading devices in residential laundry rooms allow for the purchase of laundry services via a campus debit plan. In a typical installation, a laundry reader controls multiple washers and/or dryers in the room via a laundry multiplexor (or mux). The cardholder swipes and chooses a machine to use. The controller debits the cost of the service from cardholder's account and sends a signal to the multiplexor to activate the selected machine. Some laundry applications also have web and cellular interfaces that allow students to view available machines from a web interface or to receive a text message when the wash or dry cycle has completed.

Library Application – A common campus ID application that controls the circulation of books or other library resources. When resources are checked out the ID card is swiped or scanned via a bar code reader and the related library materials are also scanned, creating a record of the transaction. Libraries were historically early adopters of ID card technology and traditionally used bar codes. Bar codes, at many institutions, have since been replaced by magnetic stripe readers for IDs, and in some cases library materials are identified with attached radio frequency (RF) chips.

Low Coercivity (LoCo) – See Coercivity

Low Energy Encoding – See Coercivity

M

Magnetic Stripe, Mag Stripe – A strip of magnetic tape embedded on an ID card in a pre-defined location (either conforming to ISO standards or proprietary) for purposes of data encoding to be read by a card reader. Magnetic stripes are designed to accommodate either high energy or low energy encoding methods. Low coercivity stripes are usually brownish in color, while high coercivity stripes recommended for use in campus card systems are black. Depending on the width, magnetic stripes can contain 1, 2, or 3 tracks of data.

Magnetic Stripe ID Card – Any card containing a magnetic stripe. The stripe can be placed on the card in a location conforming to ISO standards or it can be proprietary (used only in a single vendor's system).

Multi-Drop Bus (MDB) – The standard interface for modern vending machines that can easily accommodate the connection of various peripherals (card readers, bill validators, coin changers, etc.) with a common single bus. MDB can be used to refer to both the physical hardware bus and the protocol for communications used on the bus.

Meal Equivalency – A feature in many traditional (non-debit) campus meal plans that allows a meal to be traded for specific value (equivalency) that can be used to purchase food in a cash or a la carte dining facility. In a meal equivalency purchase a single meal is deducted from the cardholder's account and if the purchase amount is less than the equivalency value, no change is given. If the purchase amount is more than the equivalency value the cardholder may choose to pay the difference with cash, credit card, or available debit funds.

Meal Plan – A common name for various on-campus dining programs in which customers make an upfront purchase for dining services. Traditional board plans provide a set number of meals during a given period (week, month, semester). Unused meals are usually forfeited. Some meal plans allow customers to trade a meal for value in a cash operation (Meal Equivalency). Debit meal plans provide cardholders with a certain value of funds in their dining debit account. The account is then decremented for each meal purchase. Most plans allow for patrons to purchase additional meals or debit funds during the semester. Meal plans are often coupled with housing charges in what are typically referred to as room and board rates.

Memory Card – An integrated circuit card with writable memory that stores information about the cardholder. A memory card cannot process information or perform complex calculations because, unlike a smart card, it does not contain a microprocessor. Memory cards were traditionally used for low-value, offline transactions such as vending, copiers, or transit. Most memory card systems have been replaced with smart cards that have a much higher level of security and functionality.

Merchant – A retail operation that accepts the campus card as a method of payment, usually the flexible spending account. Typically, a commission is paid to the campus card program on these transactions. Merchants may be on campus, off campus and online.

Micro Text - The security process involving the printing of very small text in a specific location on a card surface. Due to physical limitations in the resolution of thermally printed images, it is difficult to print true micro text using thermal printers. Micro text is therefore generally pre-printed, prior to dye-sublimation printing, using a type of offset press. Micro text can also be found on higher-end holographic security overlays.

Mil – A unit of .001 inch used to specify the thickness of ID card components.

Mobile app – A self-service application that campus cardholders and community guests can access to perform various online ID functions that may include campus account balance and transaction review, real-time deposits, statement access, report lost/stolen cards, upload photos and provision mobile card credentials. These may be vendor products or custom designed by the higher education institution.

Mobile card – Specific type of campus card credential that is applied to a customer’s mobile devices such as smart phones, smart watches and wearables.

Multi-Tenant Architecture - This allows multiple clients or tenants to share a single instance of the software application and database. Each tenant's data is logically separated within the shared environment, although the infrastructure is shared among all users. Key characteristics of Multi-Tenant Architecture include:

  • Shared Resources: Multiple tenants use the same instance of the application and database.
  • Efficiency: More efficient use of resources as the same infrastructure supports many clients.
  • Cost-Effectiveness: Lower costs due to shared resources and reduced overhead.
  • Scalability: Easier to scale as adding new tenants requires fewer changes to the infrastructure.

Choosing between single-tenant and multi-tenant architecture depends on various factors including cost, customization needs, security requirements, and scalability. Single-tenant architecture offers isolation and customization at a higher cost, while multi-tenant architecture provides efficiency and cost savings with shared resources. Some schools may not allow cloud systems in a multi-tenant environment so ask your campus IT before changing to another system.

Multifactor Authentication – An authentication method in which a user is granted access only after presenting two or more factors (e.g. login credentials plus a PIN number). Multifactor Authentication may be used to access a mobile app.

Mylar – A plastic used in the production of laminated magnetic stripe ID cards. 

N

Network – In general, any collection of computers and associated devices connected together in order to share information. In a campus card program, the network usually refers to the card reading network, which would encompass the campus card server, reader, related firewalls, and other network components. Most modern readers communicate on the network using the standard TCP/IP protocol. Some older readers still communicate using an RS485 serial protocol.

Near Field Communication (NFC) – A set of contactless communication short-range wireless technology protocols that enables two electronic devices to establish secure communications between the devices when brought within centimeters of each other. For card/transaction systems, NFC can be utilized within the plastic, wearables or mobile card (smart devices) credential types.

Noise – Technically referred to as electro-magnetic interference (EMI) and radio frequency interference (RFI), electrical noise disrupts the smooth sine wave output of electricity expected from utility power sources. Electrical noise can adversely affect the functioning of campus card reading components and cause information sent over phone or data lines to be garbled or lost. Transmission lines using a serial communications protocol tend to be more susceptible to EMI noise than TCP/IP network cables. Noise can often be combated by using a line conditioner and EMI/RFI filters like those offered by an uninterruptible power supply (UPS).

Non-photo ID – Cards that are generally used where a photo is not needed for identification purposes. Non-photo IDs are often used for temporary or conference ID cards. These cards have a number and are serialized. The card numbers are usually assigned a number range that is separate and distinct from the primary photo ID cards.

O

Oersted – A unit of magnetic force used to measure coercivity.

Offline – Refers to a campus card system where transactions are processed in a reader that is not communicating in real-time to the host server. In traditional offline systems, information such as a debit account balance or door access credentials are stored on the card's magnetic stripe or memory chip. When the card is used, the reader accesses the data on the card, conducts the transaction, and then (in the case of a debit transaction) writes the updated balance back to the card. The reader also typically stores a record of the transaction within the reader memory. Data from the reader can be accessed and uploaded to the host via walk-up and physically connecting a handheld device. Most modern campus card systems now use online technology. Offline transactions can also occur when communications to an online card reader terminal is temporarily disrupted. Depending on the reader, the application will either allow or disallow all transactions in an offline mode. If transactions are allowed, they are stored in the reader and automatically uploaded once communications are restored.

Off-Campus Merchant Application – Campus card programs have traditionally served on-campus services and venues such as dining and bookstores. It has become more common for programs to extend the campus card program beyond campus boundaries, allowing flexible spending accounts to be used at various merchants in the local community. In this scenario, the campus transaction system acts as a card processor, and merchants are charged a fee or commission on each campus card sale conducted in their business. The school then settles with the merchant, paying them for the sale they conducted, less the commission. Two models are common for this service. In some cases, the schools are self-operated and assume responsibility for acquiring merchants, installing and maintaining equipment, processing settlements, and marketing. In other cases, the school will contract with an integration partner or card system provider to provide these services (in exchange for a share of the sales commissions). Depending on the business model and sales volume, off-campus merchant programs can offer a valuable service to students while at the same time generating revenue for the card program

One-Card System – A campus card system in which a wide range of services are available and accessible to cardholders via a single ID card. These services may include ID verification, meal plans, flexible spending accounts, library access, facility access, event access/ticketing, vending, laundry, copiers, time and attendance, and more. Several different cards may be in use by different segments of the community (for marketing and group differentiation purposes), but each cardholder need only carry a single card to access all services. Institutions without comprehensive one-card systems may require patrons to carry several cards that each serve a different purpose and only work in a single system.

Online – Refers to a campus card system where transactions processed in a reader that is validating cardholder information to a central server via real-time communications. When a card is used, the reader accesses the ID information on the card and sends a transaction message to the server. The server immediately validates the request, records the transaction, and sends back a message to the reader alerting the cardholder or cashier if the transaction was valid or denied. Online readers can operate in an offline mode if communications are disrupted, temporarily storing transaction data until communications are restored.

Online Deposit, Online Funding – The processes and application that allow cardholders to replenish a debit account by logging on to a web application and using a credit card.

Original Equipment Manufacturer - An original equipment manufacturer (OEM) is a company whose goods are used as components in the products of another company. An OEM creates parts and components that are used by other companies in their finished products.  

Overlaminate, Overlay – A sturdy clear film that is adhered over the top of a printed card and offers protection from general wear. Overlaminates come in different thicknesses, usually 0.5 to 1.0 mils (1 mil=1,000th of an inch). A holographic design can be added to an overlaminate for additional security against counterfeiting and tampering.

P

Primary Account Number (PAN) – The account number embossed on the face of and encoded on the magnetic stripe of a bank card.

Pass – A digital representation of a campus ID card that a cardholder has successfully provisioned to their mobile device.

Pay for Print Application – A service that allows cardholders to purchase networked printing services via an ID card debit account. In a typical scenario a cardholder working in a computer lab would send print jobs to the printer. The cardholder visits a print release computer workstation and swipes their ID card. The cost of the print jobs is deducted from the cardholder's account and once the transaction is validated the print jobs are released to the printer.

Payment Applications Data Security Standards (PA-DSS) – A set of standards, developed by the PCI Security Standards Council, that must be followed by vendors who develop and sell hardware and software used to process credit cards. A credit card processing device or software application that is PA-DSS compliant has been developed according to standards that facilitate a merchant to use the product to process credit cards in a PCI-DSS-compliant manner. However, using a PA-DSS-certified system does not guarantee that a merchant is PCI-DSS compliant. It is critical that the system be installed, configured, and operated in a manner that follows the PCI-DSS standards.

Payment Card Industry Data Security Standards (PCI-DSS) – A set of standards, developed by the PCI Security Standards Council, that must be followed by merchants to ensure that their credit card processing systems and procedures are secure. Most merchants must attest that they meet the standards by completing a Self-Assessment Questionnaire (SAQ) annually. The standards can be found on the web here .

Peripheral Device – Refers to any number of devices or components that are part of a campus card system or point of sale system. Point of sale peripheral devices may include receipt printers, cash drawers, scanners, keypads, scales, and patron displays.

PIN – Personal Identification Number. Usually a four-digit numeric code, known only to the cardholder, which must be entered along with a card swipe in order to validate a transaction. PINs are primarily used in areas or for transactions that require greater security (such as ATM transactions).

PIN Block – Data that is encoded on track 2 of bank cards. This is not the actual cardholder PIN but data that can be used in conjunction with the account number and an algorithm to verify the cardholder PIN entry.

PIN-Based Bank Card – see Banking Program

Points, Point Plan, Points Account – The term points was typically used to refer to funds in a campus debit account where, in most cases, one point equaled one penny ($.01). While the term is still used for some plans and accounts, the more common practice is to refer to funds in meal plans and flexible spending accounts as dollars and cents.

Polyester – A plastic used in the production of laminated magnetic stripe ID cards.

Point of Sale Terminal, POS Terminal – An electronic cash register with an integrated reader capable of handling cash, credit, and debit transactions. In the campus card environment, most POS terminals must also have the capacity to log transactions locally when the terminal is in an offline state.

Power over Ethernet  - Power over Ethernet (PoE) is a safe and convenient way of delivering wired networking and power delivery in a single package. It's a convenient way of powering small devices like CCTV cameras. It is a method of providing both power and networking to a device via network cabling. Just like with wireless networking, there are different standards for various PoE implementations, with newer standards providing more power for more demanding devices. 

Provisioning – The process for a campus cardholder to add a mobile card credential to their smart devices (phones, watches).

Proximity Card, Prox Card – An ID card using radio frequency (RF) signals to communicate with a reader. Proximity cards do not have to come into physical contact with the reader (like a magnetic stripe card) but only have to be held near the reader. Depending on the type of reader, the card must be held within a few inches to a couple of feet to read. Proximity card capabilities can range from the simple transmission of a unique card serial number to the more sophisticated wireless communication found in a contactless smart card. Other non-ID card formats may be used to transmit the same RF signal—such as a key fob or small sticker.

Public Key Open Credential – PKOC is a standards-based mobile credential introduced by the Physical Security Interoperability Alliance (PSIA) that is vendor-agnostic and interoperable across multiple devices and systems. It is a highly secure access credential that can live on a mobile phone, in a plastic access card, or in any device capable of generating a public-private key pair.

Q

R

Read Head, Magnetic Read Head – The device in a magnetic stripe card reader that comes into contact with the magnetic stripe to read the magnetic data encoded on the card. Magnetic read heads become dirty during normal use and must be cleaned with special cleaning cards (paper cards soaked with a cleaning solution). Read heads will also physically wear out over time and are the most commonly replaced component in a magnetic card reader.

Recarding, Recarding Event – The act of issuing new ID cards to all, or a significant portion, of a campus population. Recarding normally takes place to upgrade card technology (e.g., adding proximity or smart card technology) or change the design or encoding format of a campus ID card. Recarding takes careful planning and coordination when technology or card formatting is changing and may also require the conversion of card reading devices and campus card software.

Request to Exit Switch, Request to Exit Device, RX Switch – A micro switch (inside a crash bar) button mounted next to the door, or a motion detector that triggers the controller board to unlock the door when someone is exiting. These switches are typically used on the inside or secure side of the door. In some cases, a card reader is placed on both sides of the door (for entrance and exit). In this case, the card reader on the inside acts as the request to exit device.

Reverse Transfer Printing (RT) - Reverse Transfer, also recognized as High-Definition Printing (HDP), operates using a color ribbon and retransfer film to apply images onto an ID badge. A distinguishing feature of this method is that the printhead does not make direct contact with the card; instead, the ribbon is printed onto the retransfer film, which is then heat-transferred onto the card.

S

Self-Assessment Questionnaire (SAQ) – A questionnaire required to be completed annually by all merchants who accept branded credit cards (e.g., MasterCard, Visa). The questionnaire is the primary way of self-attestation of compliance with the Payment Card Data Security Standards (PCI-DSS). There are different forms of the survey that must be completed depending on the type of payments and system used to process the credit card transactions.

Schedules, Door Schedules – Various types of schedules are used in campus card systems to define how meal plans and door access systems function. A point of sale terminal schedule may define the operating hours for specific meal periods. The schedule may determine which menus, products, and pricing schedules are in effect at any given time. In the case of door access, schedules may be used in a number of ways. For example, schedules could determine when a door is unlocked, when cardholder access plans are active, or when alarm monitoring should occur. In many cases schedules are defined in a weekly format where time periods (and corresponding parameters) are defined each day of the week and the schedule is repeated each week. In other cases, schedules are calendar/date driven and are specific to calendar dates.

Settlement – The act of processing and remitting payment to vendors or merchants for transactions they have processed via a campus card system. Settlements are commonly used with off-campus merchant programs but can apply to paying on-campus departments as well. Settlement payments may take the form of paper checks or electronic deposits directly to a merchant bank account. Normally a settlement statement is produced for the merchant at the same time payment is made.

Signature-Based Bank Card - see Banking Program

Single-Tenant Architecture - This is a model where each client or tenant has their own dedicated instance of the software application and database. In this setup, resources and data are isolated, ensuring that the application environment for one tenant does not affect or overlap with another. This isolation provides a high level of customization and control for each client. Key characteristics of Single Tenant Architecture include:

  • Isolation: Each tenant has a separate instance of the application and database.
  • Customization: Greater flexibility to customize the application to meet specific needs.
  • Security: Enhanced security due to data isolation, reducing the risk of data breaches between tenants.
  • Resource Allocation: Dedicated resources for each tenant, which can lead to better performance tailored to the tenant’s needs.

Choosing between single-tenant and multi-tenant architecture depends on various factors including cost, customization needs, security requirements, and scalability. Single-tenant architecture offers isolation and customization at a higher cost, while multi-tenant architecture provides efficiency and cost savings with shared resources. 

Siren Can – The housing and related siren or other local annunciator device that is usually located near a door and that makes noise when an alarm condition exists at the door.

Smart Card – According to the Smart Card Alliance, "A smart card is a device that includes an embedded integrated circuit chip (ICC) that can be either a secure microcontroller or equivalent intelligence with internal memory or a memory chip alone. The card connects to a reader with direct physical contact or with a remote contactless radio frequency interface. With an embedded microcontroller, smart cards have the unique ability to store large amounts of data, carry out their own on-card functions (e.g., encryption and mutual authentication) and interact intelligently with a smart card reader. Smart card technology conforms to international standards (ISO/IEC 7816 and ISO/IEC 14443) and is available in a variety of form factors, including plastic cards, fobs, subscriber identity modules (SIMs) used in GSM mobile phones, and USB-based tokens." Smart cards may require contact with readers or be contactless.

Standards and Guidelines (SAGs) - The purpose of the NACCU Standards and Self-Assessment Guidelines (SAGs) is to provide a tool for a comprehensive review for Campus Card programs. The results of this assessment can be used to guide strategic plans, identify opportunities and strengths, and to identify weaknesses and areas that need development in Campus Card programs. This assessment tool allows for a consistent process which can be replicated to ensure that the assessment cycle continues. Contact the NACCU Office for additional information.

Start Sentinel – A special character encoded on an ID card that indicates the beginning of the track encoding. The start sentinel for track 1 is usually a percent symbol (%) and the start sentinel for track 2 is usually a semicolon (;).

Strike (Lock) Position Switch – A micro switch that monitors the position of a door electronic lock strike plate, reporting the condition to the controller board.

Strike Unlock Time, Unlock Time – The amount of time, usually defined in seconds, that a door will unlock after the controller receives a valid signal from the card swipe or proximity reader. Once the door is opened, as reported by the door position switch, the controller board usually sends a signal to reset the strike back to a locked state (regardless of the unlock time) to ensure the entrance is secured as soon as the door is returned to the closed position.

Swipe – A swipe is the act of passing a magnetic stripe ID card through the long, shallow slot and past the read head of the swipe reader of a card reader.

Systems Integrator – Any supplier of ID card systems offering comprehensive technology solutions by integrating different hardware and software components from several sources. This allows a vendor to choose the best components for a client based on that client's needs and budget. 

T

Tap – Associated with the style of use for contactless technology short-range wireless protocols allowing secure communications between enabled devices when brought within centimeters of each other instead of direct contact between the devices.

Temporary Card – A card that is issued for a short period of time, usually to replace a lost or misplaced ID card until a permanent ID card replacement can be issued. In most cases a temporary card does not have a photo. Depending on the applications and systems in use, most or all accounts and privileges of the permanent card are transferred to the temporary card upon issuance and deactivated on the misplaced permanent card.

Time and Attendance Application – An application that tracks start and stop times for employees and calculates the hour worked for a shift or shifts. In many instances an ID card and a card swipe is the mechanism for recording the start and end of the employee's shift.

Track(s) 1, 2, and 3 – There are normally 3 tracks of data that can be encoded on the magnetic stripe of ID cards and financial bank cards (depending on the type of stripe) and used for various types of transactions:

Track 1 (or I) – Data on track 1 are usually encoded using a format initially developed by the airline industry (IATA) and can contain both alpha and numeric data. The encoded bit density is 210 bits per inch. Banking financial card applications do not usually require encoding on track 1. Campus card programs may use track 1 for proprietary institutional use.

Track 2 (or II) – Data on track 2 are usually encoded using a format initially developed by the banking industry (ABA) and contain numeric data only. The encoded bit density is 75 bits per inch. In campus card systems that have a banking program, a 16-digit card number, commonly referred to as an ISO number, is encoded on track 2, along with a PIN block. This same track is usually read by campus card program card readers.

Track 3 (or III) – Track 3 is most often used for proprietary offline door access systems or, in many cases, not used for campus card systems.

Transaction – The record created by and stored on a campus card system when a card is used to make a purchase, enter a door or facility, or other activity. A transaction record typically records the time and date of the transaction, the cardholder’s primary ID number, the card number, the terminal or card reader where the transaction occurred, the amount of a financial transaction, and an indication if the transaction was valid or denied. A transaction record may also include flags to indicate if the transaction occurred online or offline, if the card was swiped, or if the card number was manually entered by a cashier. Some point of sale systems also include the details of the purchase such as menu items that were purchased.

Transaction Processing – The most elementary function of a transaction system in which a transaction is initiated by a card swipe (or manual entry), evaluated by the system, either allowed or denied, and subsequently stored to memory in order to update appropriate cardholder account and transaction files. In the case of an online transaction the transaction system is transmitted in real-time to a host for processing and the authorization message subsequently sent back to the reader. For offline transactions the authorization takes place in an offline database stored at the reader device and is uploaded to the host (either automatically or manually) after the transaction takes place.

Transaction Response time – The time it takes for a transaction request to be sent from an online card reading device to the transaction processor of the host computer and back again in the form of a reply. In practice, response time is measured as an average of many transactions made in varying circumstances. While response times will differ depending on system size and the logging method, to operate efficiently, response times should average only a second or two per transaction. Different applications may require different responses times based on the volume of transactions.

U

Ultra-Wideband Technology – Ultra-wideband, or UWB, is a short-range RF technology for wireless communication that can be leveraged to detect the location of people, devices, and assets with unrivaled precision. Like other communication protocols including Bluetooth and Wi-Fi, UWB can be used to transmit data between devices through radio waves. It does so with short nanosecond pulses over an "ultra-wide" range of frequencies. UWB technology uses billions of pulses of radio that are sent every couple of nanoseconds as a pattern across a wide frequency spectrum (at least 500 MHz or 20% of the center frequency). These signals are dispatched from a transmitter to a receiver, or amongst transceivers. The receiving device analyzes the incoming pattern and translates it into data. While this allows devices to quickly send data over short ranges, these UWB signals can also be used to accurately sense the location of devices. This makes it possible for UWB-enabled devices (like smartphones or sensors and anchors) to pinpoint a transmitting device, such as another smartphone or asset tracking tag, find its precise location, and in certain applications enable location-aware communication and services.

Unattended Transaction – Any card-based transaction that takes place without the assistance of an operator or cashier. Vending, copier, laundry, and kiosk transactions are common types of unattended transactions. Unattended sales transactions do have a higher level of risk for fraud since there is no cashier present who can compare the photo on the card to the cardholder. However, in most cases the value of an unattended transaction is relatively low.

Unified Credential – enables access to multiple systems, hardware, services and applications that span the entire community using a single identity.

V

Vend Stripe – see Debit Stripe

Vending Application – Installation of card readers on vending machines (beverage, snack, convenience items) so that ID cards and/or credit cards can be used to purchase products without cash. Most modern vending units have a multi drop bus (MDB) that allows for easy integration of card readers with the machine. Most vending applications allow for charging different prices for cash sales vs. card sales. In most applications all sales are tracked by the reader and transmitted to the host for reporting. Vending may be conducted either offline or online, with the trend toward online. Contracts for vending services will vary from institution to institution. In most cases contracts are based on vending machine sales and the card office is usually paid a commission for card-based sales.

Video Image ID Card – A photo ID card produced by a video imaging system. The card composition is usually PVC or a PVC/polyester blend. The card may also have a clear or holographic overlaminate or overlay.

Video Imaging, Video Production System – The process and related hardware and software for capturing and printing a digital video image for use on ID cards. The image, along with other data, is printed (see Dye Sublimation Printing) directly on the plastic card surface. The digital images are stored in a database and can be used for other purposes or integrated into other applications such as photo class rosters and student information systems. This is the standard method of ID card production for most card systems.

W

Wallet – Where the campus ID card is loaded to and can be accessed on a smart device (phones, watches).

Wearables – Form factor for embedded smart device technology that can be worn by the cardholder to access applicable services including payments, facilities access, event access and more. Examples include smart watches, wristbands, fobs and lanyard tags.

Web Portal - A web page/application that cardholders can use to perform various online ID functions such as reviewing debit account balances, reviewing transaction history, making a deposit to a debit account, or reporting a card lost. Many campus card programs have an online web portal that allows customers to conduct one or more self-service transactions related to their ID card accounts and services.

X

Y

YMC, YMCK, YMCKT – The designated name of various types of ribbons used in dye sublimation ID card printers, with the letters representing the different panels on the ribbon: Y=yellow, M=magenta, C=cyan, K=black, T=transparent. Black can be printed by using different combinations of yellow, magenta, and cyan; however, for a true black color, a black (or K) panel must be used. The transparent overlay (T) is not to be confused with the thicker overlaminate film that is on a separate ribbon roll. Ribbons can be purchased in many different configurations based on the printing need (e.g. color vs. black and white and single vs. double sided printing). Used dye sublimation ribbons should always be securely disposed of since they contain the record of sensitive information (ID numbers, names, etc.) printed on ID cards.

Z