Integration of Push Notification-based transaction data signing

Push Notification-based transaction data signing (TDS) is a method to validate transactions. It uses a push mode to enable any activated Mobile Security Suite Orchestration SDK application on a mobile device. This serves to generate a signature on data that is displayed on the mobile device.

For the validation request, a default timeout value of 60 seconds has been defined per tenant. To increase the validation period for Push Notification-based TDS within Intelligent Adaptive Authentication, this timeout value can be increased.

Contact OneSpan Support to extend the timeout configuration for your tenant(s).

Integration for Mobile Security Suite Orchestration SDK

Sequence of a Push Notification-based transaction for Mobile Security Suite Orchestration SDK

1. The user initiates the transaction data signing operation and triggers the client application to send a transaction validation request to the OneSpan Trusted Identity platform API Provides the endpoints that are required for the successful completion of the operations. by calling POST /users/{[email protected]}/transactions/validate.
2. The user receives a Push Notification message on their mobile device.
3. The user approves the request to sign the data fields. With this, the transaction data fields have been successfully signed.

To integrate Push Notification-based transactions for Mobile Security Suite Orchestration SDK

• Issue a transaction request with the POST /users/{[email protected]}/transactions/validate endpoint:

  • Payload:

    • objectType: "Adaptive TransactionValidationInput"

    • data.transactionMessage

    • orchestrationDelivery

      • pushNotification