Get a demo
Blog Page
Want more content?

By subscribing to our mailing list, you will be enrolled to receive our latest blogs, product updates, industry news, and more!

Tokenization

What Is a Token Scheme?

Valerie Hare
Mar 22, 2022
Want more content?

By subscribing to our mailing list, you will be enrolled to receive our latest blogs, product updates, industry news, and more!

When it comes to your data, your organization’s specific use case will determine the type of data privacy and security needed. If you have researched tokenization, there is a good chance that you have come across the term token scheme. Keep reading to discover what a token scheme is and the different token formats that are available. With this knowledge, your business can be better informed when deciding which token format to implement into your existing environment. 

What Is a Token Scheme? 

A token scheme encapsulates the validation of input data and the token format returned to a client. At TokenEx, token schemes are designed to facilitate multi-data set acceptance without impeding critical business processes or existing applications. Other names for token schemes include token formats, which can be used interchangeably. Scheme tokens also refer to network tokens, which are used to process secure and more efficient card payments for merchants.  

Token formats can either be single or multi-use. The type of token format will always depend on the organization’s use case. The token and input data have a 1:1 mapping with a multi-use token scheme. This means that when a business sends the same input data numerous times, it will always receive the same token value. On the other hand, a single-use token scheme means that a new token value will be received every time.  

For example, a merchant that accepts card payments may need the bank identification number (BIN) from credit cards. In this use case, the client would benefit from a format-preserving token scheme, which can retain the first 6 digits from the input data. Indeed, this token format helps maintain existing business utility while also securing sensitive payment data within a tokenized environment and staying out of compliance scope. 

What Are the Different Token Formats? 

Depending on which tokenization platform you partner with, there are typically different token formats offered to clients. TokenEx is the only tokenization solution offering a diverse range of token schemes from PCI to ASCII. TokenEx offers the following token formats for businesses to choose the best token formats for their use case. Indeed, we can tokenize any structured data type. 

Standard Token Schemes 
ANTOKEN4

Description: This token returns an alphanumeric, length-preserving token that retains the last 4 digits from the input data (ideal for clients that process card payments). 

  • Input Validation: It accepts numeric values from 0 to 9.  
  • Input Length: 9-512
  • Token Mapping: 1:1 
  • JSON value: 29 
ANTOKEN512

Description: This token format returns an alphanumeric, length-preserving token. 

  • Input Validation: It accepts numeric values from 0 to 9.  
  • Input Length: 5-512 
  • Token Mapping: 1:1 
  • JSON value: 30 
ASCII

Description: This token format returns an alphanumeric token but doubles the length of the input. 

  • Input Validation: It accepts any ASCII characters.  
  • Input Length: 5-128 
  • Token Mapping: 1:1 
  • JSON value: 27 
PCI

Description: This token format returns an alphanumeric, length-preserving token. For input data greater than or equal to 15 digits, the token will retain the first 6 and last 4 digits. For input data less than 15 digits, the token will retain the first 4 and last 4 digits.  

  • Input Validation: It accepts Luhn-compliant numeric values (0-9).  
  • Input Length: 13-19 
  • Token Mapping: 1:1 
  • JSON value: 26 
Premium Token Schemes 
PCI

Description: This token format returns an alphanumeric, length-preserving token. For input data greater than or equal to 15 digits, the token will retain the first 6 and last 4 digits. For input data less than 15 digits, the token will retain the first 4 and last 4 digits.  

  • Input Validation: It accepts Luhn-compliant numeric values (0-9).  
  • Input Length: 13-19 
  • Token Mapping: 1:1 
  • JSON value: 26 
sixANTOKENfour

Description: This token format returns an alphanumeric, upper case, length-preserving token retaining the original first 6 and last 4 digits of the input data. 

  • Input Validation: It accepts alphanumeric values (a-Z, 0-9).  
  • Input Length: 14-38 
  • Token Mapping: 1:1 
  • JSON value: 9 
sixTOKENfour

Description: This token format returns a Luhn-compliant token that retains the card number’s original first 6 and last 4 digits.  

  • Input Validation: It accepts numeric values from 0 to 9 (Luhn-compliant).  
  • Input Length: 13-19 
  • Token Mapping: 1:1 
  • JSON value: 1 
sixTOKENfourNonLuhn 

Description: This token format returns a non-Luhn-compliant token that retains the card number’s original first 6 and last 4 digits.  

  • Input Validation: It accepts numeric values from 0 to 9 (Luhn-compliant). 
  • Input Length: 13-19 
  • Token Mapping: 1:1 
  • JSON value: 23 
sixNTOKENfour 

Description: This token format returns a numeric, length-preserving token that retains the input data’s original first 6 and last 4 digits.  

  • Input Validation: It accepts numeric values from 0 to 9.  
  • Input Length: 14-38 
  • Token Mapping: 1:1 
  • JSON value: 19 

sixASCIITOKENfour 

Description: This token format returns an ASCII, length-preserving token that retains the input data’s original first 6 and last 4 digits. 

  • Input Validation: It accepts any ASCII characters.  
  • Input Length: 14-38 
  • Token Mapping: 1:1 
  • JSON value: 16 
fourANTOKENfour 

Description: This token format returns an alphanumeric, length-preserving token that retains the original first 4 and last 4 digits of the input data.  

  • Input Validation: It accepts alphanumeric values (a-Z, 0-9).  
  • Input Length: 12-38 
  • Token Mapping: 1:1 
  • JSON value: 10 
fourTOKENfour 

Description: This token format returns a Luhn-compliant token that retains the card number’s original first 4 and last 4 digits.  

  • Input Validation: It accepts numeric values from 0 to 9 (Luhn-compliant).  
  • Input Length: 13-19 
  • Token Mapping: 1:1 
  • JSON value: 2 
fourTOKENfourNonLuhn 

Description: This token format returns a non-Luhn-compliant token that retains the card number’s original first 4 and last 4 digits.  

  • Input Validation: It accepts numeric values from 0 to 9 (Luhn-compliant).  
  • Input Length: 13-19 
  • Token Mapping: 1:1 
  • JSON value: 24 
fourNTOKENfour 

Description: This token format returns a numeric length-preserving token that retains the original first 4 and last 4 digits of the card number.  

  • Input Validation: It accepts numeric values from 0 to 9.
  • Input Length: 12-38 
  • Token Mapping: 1:1 
  • JSON value: 20 

fourASCIITOKENfour 

Description: This token format returns an ASCII, length-preserving token that retains the original first 4 and last 4 digits of the input data. 

  • Input Validation: It accepts any ASCII characters. 
  • Input Length: 12-38 
  • Token Mapping: 1:1 
  • JSON value: 17
ANTOKEN 

Description: This token format returns an alphanumeric, length-preserving token. 

  • Input Validation: It accepts alphanumeric values (a-Z, 0-9). 
  • Input Length: 4-38 
  • Token Mapping: 1:1 
  • JSON value: 12 
ANTOKENfour 

Description: This token format returns an alphanumeric, length-preserving token that retains the original last 4 digits of the input data. 

  • Input Validation: It accepts alphanumeric values (a-Z, 0-9). 
  • Input Length: 8-38 
  • Token Mapping: 1:1 
  • JSON value: 11 
ANTOKENAUTO 

Description: This token format automatically selects an ANTOKEN type token scheme to retain the maximum number of original characters.  

  • Input Validation: It accepts alphanumeric values (a-Z, 0-9). 
  • Input Length: 4-38 
  • Token Mapping: 1:1 
  • JSON value: 13 
ASCIITOKEN 

Description: This token format returns an ASCII, length-preserving token. 

  • Input Validation: It accepts any ASCII characters. 
  • Input Length: 4-38 
  • Token Mapping: 1:1 
  • JSON value: 15 
ASCIITOKENfour 

Description: This token format returns an ASCII, length-preserving token that retains the original last 4 digits of the input data. 

  • Input Validation: It accepts any ASCII characters. 
  • Input Length: 8-38 
  • Token Mapping: 1:1 
  • JSON value: 14 
ASCIITOKENAUTO 

Description: This token format automatically selects an ASCIITOKEN token scheme to retain the maximum number of original characters.  

  • Input Validation: It accepts any ASCII characters. 
  • Input Length: 4-38 
  • Token Mapping: 1:1 
  • JSON value: 18
GUID 

Description: This token format requires no validation and will return a GUID as the token. 

  • Input Validation: None 
  • Input Length: 1-1000 
  • Token Mapping: 1:Many 
  • JSON value: 4 
nGUID 

Description: This token format is used to tokenize any number combination. 

  • Input Validation: It accepts numeric values (0-9). 
  • Input Length: 1-1000 
  • Token Mapping: 1:1 
  • JSON value: 6 
nTOKEN 

Description: This token format returns a numeric, length-preserving token. 

  • Input Validation: It accepts numeric values (0-9). 
  • Input Length: 4-38 
  • Token Mapping: 1:Many 
  • JSON value: 8 
nTOKENfour 

Description: This token format returns a numeric token while retaining the length and last 4 digits of the input data.  

  • Input Validation: It accepts numeric values (0-9). 
  • Input Length: 8-38 
  • Token Mapping: 1:Many 
  • JSON value: 7
nTOKENfour1to1 

Description: This token format returns a numeric token while retaining the length and last 4 digits of the input data. 

  • Input Validation: It accepts numeric values (0-9). 
  • Input Length: 8-38 
  • Token Mapping: 1:1 
  • JSON value: 28
nTOKENAUTO 

Description: This token format automatically selects the NTOKEN token scheme to retain the maximum number of original characters.  

  • Input Validation: It accepts numeric values (0-9). 
  • Input Length: 8-38 
  • Token Mapping: 1:1 
  • JSON value: 21 
SSN 

Description: This token format is used to tokenize a Social Security number. 

  • Input Validation: It accepts numeric values (0-9). 
  • Input Length: 9 
  • Token Mapping: 1:1 
  • JSON value: 5 
TOKEN 

Description: This token format requires no validation and will return a random 38-character alphanumeric token. 

  • Input Validation: None. 
  • Input Length: 4-1000 
  • Token Mapping: 1:1 
  • JSON value: 22 
TOKENfour 

Description: This token format will return a Luhn-compliant token retaining the original last 4 digits of the card number. 

  • Input Validation: It accepts numeric values from 0-9 (Luhn-compliant). 
  • Input Length: 13-19 
  • Token Mapping: 1:1 
  • JSON value: 3 
TOKENfourNonLuhn 

Description: This token format will return a non-Luhn-compliant token that retains the original last 4 digits of the card number.  

  • Input Validation: It accepts numeric values from 0-9 (Luhn-compliant). 
  • Input Length: 13-19 
  • Token Mapping: 1:1 
  • JSON value: 25 
ThreeTwo 

Description: This token format will return a 9-digit numeric token retaining the last 4 digits of the input value. 

  • Input Validation: It accepts numeric values (0-9). 
  • Input Length: 9 
  • Token Mapping: 1:1 
  • JSON value: 32 
How Token Schemes Can Be Customized 

Since token schemes can be used for any data type, this provides the flexibility to create a customized solution for businesses. Indeed, TokenEx can secure and desensitize all types of data, thus allowing clients to use custom tokens that are alphanumeric, Luhn-compliant, length- and format-preserving, and fully functional with their existing business systems. For example, one of our clients, MRC Global, needed a vendor that could tokenize three different types of data – payment card data, personally identifiable information (PII), and unstructured data. This client discovered the TokenEx Data Protection platform, which allowed them to create a customized token scheme solution that other tokenization providers failed to offer.  

Furthermore, a client’s use case may require a unique token scheme that provides 1:1 or 1:Many mapping. For example, a merchant may need a 1:1 token regarding primary account numbers (PANs) from customers’ credit and debit cards stored on their ecommerce website. With a 1:1 token, the PAN will retain the same token value, which is necessary for merchants that offer recurring billing services. However, a different business may need a 1:Many token to repeat a single data point multiple times. For instance, a company could use a 1:Many token scheme to ensure that the output token will be different when the same customer’s date or name is sent. Indeed, this token will protect the client from data breaches and prevent cyber criminals from deciphering the input data.  

TokenEx Offers Flexible Token Schemes and Data Protection 

In addition to flexible, customizable token schemes, TokenEx also offers data protection and security through our cloud tokenization platform. As a leading global tokenization provider, we are dedicated to protecting the world’s most sensitive data, helping businesses maintain critical business utility, and ensuring they comply with regulatory standards. If you are interested in learning more about token schemes, data tokenization, or other services, contact us today. Our expert team would love to meet you and learn how we may be a good fit for your organization.  

Want to learn more about token formats?
Take me to the API Docs

Related Blog Posts

Apr 16, 2024
Payments PCI Tokenization

TokenEx & IXOPAY Merge to Enable Merchants to Join the Multi-Processor World 

I’m excited to announce that TokenEx is merging with IXOPAY, creating a new leader in global payment optimization. This will combine TokenEx’s expertise in tokenization of payment data, with IXOPAY's best-of-breed payment orchestration, including transaction routing & reconciliation capabilities. The combined company will be called IXOPAY, a TokenEx Company, and represents a comprehensive product suite to secure and optimize payments. 
Read more
Aug 16, 2023
Tokenization

How to Choose a Tokenization Solution

This expert guide will help you choose a tokenization solution and outline the pros and cons of tokenizing your organization’s sensitive data with different technologies and providers that comprise the tokenization landscape.
Read more

5314 S. Yale Avenue, Suite 800,
Tulsa, OK 74135

Contact Us

sales@tokenex.com

Platform

Resources

Company

© 2024 TokenEx, Inc.

Privacy Policy
“We never touch any payment data in our contact centers, retail stores, websites, or in the field. That’s a big relief.”
Tyson Martin
Tyson Martin

Orvis Chief Information Security Officer

“TiloPay reduced its PCI scope by roughly 80 to 90 percent because they do not store credit card data internally.”
Henry Nanne headshot from TiloPay
Henry Nanne

TiloPay CTO

“TokenEx is a stable and reliable solution. We haven’t had to incorporate any major technology or version changes due to TokenEx since deployment. And since PCI Level 1 Compliance is an expectation for payment processors, by using TokenEx, we’ve streamlined our audits.”
James Robinson at Payliance headshot
James Robinson

Payliance Director of Product

Customer stories

Payliance logo
Pay N Seconds
Orvis logo
Payouts Network logo
Get connected to a payment security expert.

Book time for a 30-minute session to explore how TokenEx can help your business.