TrustID app enables secure, PSD2 compatible and frictionless 2FA ( two-factor authentication) with the use of a mobile device. It supports device binding as well as PIN and biometrics-based user authentication.
-
During provisioning, end-user will register with OTP(OTP-BE) through the App(OTP customer) that is hosting OTP-SDK – and this registration is communicated and stored also with the Customer to be used for subsequent authentications
-
After provisioning, end-user can use their registered device for logging into App, approving a transaction etc.
CIBA specific parameters
Below parameters should be passed as Json Key value pair inside binding_message in below format –
Copy to clipboard
-
.txt
{
"action_context": "<provisioning/authentication>",
"appId": "<appId value>",
"bindingMessage": "<content from merchant>",
"userStatus":"<active/locked >"
}
|
Name |
Description |
Constraints |
|
appID |
appId MUST be provided with the provisioning. If Customer in the authentication sends an appId, then the device/User that performs the authentication must be associated with that appId, If not, the transaction fails
|
Type-text |
|
bindingMessage |
Text to be displayed on the end user's device in text format |
Type-text |
|
userStatus |
Used only for provisioning. If not provided the user status will be set to "active" |
Type-text |
|
action_context |
To identify the purpose of request. It supports Provisioning & Authentication |
Type-text
|
Information about the end user
|
Type |
OIDC |
SAML |
Comments |
|---|---|---|---|
|
Authentication Method |
trust.authentication_status |
TRUST.AUTHENTICATION_METHOD |
Method of TrustID authentication |
|
Authentication Status |
trust.authentication_status |
TRUST.AUTHENTICATION_STATUS
|
Status of trustid authentication |
|
Binding Message |
trustid.binding_message
|
TRUST.BINDING_MESSAGE |
Binding message for the transaction with TrustID |
|
DeviceID
|
trustid.deviceid |
TRUSTID.DEVICEID |
TrustID.DeviceID
|
|
DeviceID for failed attempt |
trustid.device_for_failed_attempt
|
TRUSTID.DEVICEID_FOR_FAILED_ATTEMPT |
TrustID DeviceID for failed attempt
|
|
Device Failed Attempts |
trustid.device_failed_attempt |
TRUSTID.DEVICEID_FAILED_ATTEMPT |
Number of TrustID Device failed attempts
|
|
Transaction End Time |
trustid.transaction_end_time |
TRUSTID.TRANSACTION_END_TIME |
End time for the transaction
|
|
Transaction ID
|
trustid.transaction_id |
TRUSTID.TRANSACTION_ID |
Id of the transaction at TrustID |
|
Transaction Start Time
|
trustid.transaction_start_time |
TRUSTID.TRANSACTION_START_TIME |
Strat time of the transaction |
|
Transaction Type
|
trustid.transaction_type |
TRUSTID.TRANSACTION_TYPE |
Transaction type for TrustId authentication |
|
User ID |
trustid.userid |
TRUSTID.USERID |
User Id of TrustID end user
|
|
User ID for Failed Attempt |
trustid.userid_for_failed_attempt |
TRUSTID.USERID_FOR_FAILED_ATTEMPT |
Userid of TrustID end user for failed attempt
|
|
User Failed Attempts |
trustid.user_failed_attempts |
TRUSTID.USER_FAILED_ATTEMPTS |
Number of failed attempts of TrustID end user |