TrustID
TrustID app enables secure, PSD2 compatible and frictionless 2FA ( two-factor authentication) with the use of a mobile device. It supports device binding as well as PIN and biometrics-based user authentication.
During provisioning, end-user will register with OTP(OTP-BE) through the App(OTP customer) that is hosting OTP-SDK – and this registration is communicated and stored also with the Customer to be used for subsequent authentications
After provisioning, end-user can use their registered device for logging into App, approving a transaction etc.
CIBA specific parameters
Below parameters should be passed as Json Key value pair inside binding_message in below format –
Copy to clipboard
.txt
{
"requestType": "<provisioning/authentication>",
"appId": "<appId value>",
"bindingMessage": "<content from merchant>",
"userStatus":"<active/locked >"
}Name | Description | Constraints |
appID | appId MUST be provided with the provisioning. If Customer in the authentication sends an appId, then the device/User that performs the authentication must be associated with that appId, If not, the transaction fails | Type-text |
bindingMessage | Text to be displayed on the end user's device in text format | Type-text |
userStatus | Used only for provisioning. If not provided the user status will be set to "active" | Type-text |
requestType | To identify the purpose of request. It supports Provisioning & Authentication | Type-text |
Information about the end user
Type | OIDC | SAML | Comments |
|---|---|---|---|
Authentication Method | trust.authentication_status | TRUST.AUTHENTICATION_METHOD | Method of TrustID authentication |
Authentication Status | trust.authentication_status | TRUST.AUTHENTICATION_STATUS | Status of trustid authentication |
Binding Message | trustid.binding_message | TRUST.BINDING_MESSAGE | Binding message for the transaction with TrustID |
DeviceID | trustid.deviceid | TRUSTID.DEVICEID | TrustID.DeviceID |
DeviceID for failed attempt | trustid.device_for_failed_attempt | TRUSTID.DEVICEID_FOR_FAILED_ATTEMPT | TrustID DeviceID for failed attempt |
Device Failed Attempts | trustid.device_failed_attempt | TRUSTID.DEVICEID_FAILED_ATTEMPT | Number of TrustID Device failed attempts |
Transaction End Time | trustid.transaction_end_time | TRUSTID.TRANSACTION_END_TIME | End time for the transaction |
Transaction ID | trustid.transaction_id | TRUSTID.TRANSACTION_ID | Id of the transaction at TrustID |
Transaction Start Time | trustid.transaction_start_time | TRUSTID.TRANSACTION_START_TIME | Strat time of the transaction |
Transaction Type | trustid.transaction_type | TRUSTID.TRANSACTION_TYPE | Transaction type for TrustId authentication |
User ID | trustid.userid | TRUSTID.USERID | User Id of TrustID end user |
User ID for Failed Attempt | trustid.userid_for_failed_attempt | TRUSTID.USERID_FOR_FAILED_ATTEMPT | Userid of TrustID end user for failed attempt |
User Failed Attempts | trustid.user_failed_attempts | TRUSTID.USER_FAILED_ATTEMPTS | Number of failed attempts of TrustID end user |