Login
    Contents x
    Integrate Secure Channel communication
    • 19 Oct 2024
    • 1 Minute to read
    • Dark
      Light
    Contents

    Integrate Secure Channel communication

    • Updated on 19 Oct 2024
    • 1 Minute to read
    • Dark
      Light
    Article summary

    The Secure Channel feature can only be integrated in the context of an integration of a two-step activation model.

    The Secure Channel communication consists of:

    1. Generating an encrypted Secure Channel message from raw data.

    2. Sending the Secure Channel message to the Mobile Authenticator Studio app via an image.

    3. Signing the Secure Channel message in the Mobile Authenticator Studio app.

    4. Validating the Mobile Authenticator Studio message signature to acknowledge the transfer.

    The integration of Secure Channel communication mandatorily requires the integration of OneSpan Authentication Server Framework 3.13.1.2 or later and of the Secure Messaging SDK 4.3.5 or later.

    The usage of Cronto images to deliver the activation message requires the integration of the Image Generator SDK 4.3.5.

    Integrating secure channel communication (Overview)

    Secure Channel communication (overview)

    The generation of a Secure Channel message body from raw data relies on the transaction message body version 2 generation functionality of the Secure Messaging SDK 4.3.5. The content of the message can be formatted in three different formats:

    • A list of keys and values to display transaction content.

    • A challenge for a Challenge/Response operation.

    • Free text.

    Each format is associated with a dedicated API method to facilitate integration:

    • generateSignatureTransactionMessageBodyV2()

    • generateChallengeTransactionMessageBodyV2()

    • generateFreeTextMessageBodyV2()

    generateChallengeTransactionMessageBodyV2() generates a challenge transaction message. The title defined inside the message will not be displayed on the screen. To display the title on the screen, the generateFreeTextMessageBodyV2() method must be used.

    The output of this API call must be used as the input for the OneSpan Authentication Server Framework API method AAL2GenMessageRequest().

    The output from OneSpan Authentication Server Framework can then be converted into a message using the Image Generator SDK to be scanned by Mobile Authenticator Studio.

    The length of the Secure Channel message must be limited to 200 hexadecimal characters for it to be converted into a Cronto image.

    The signature of the transaction message generated by Mobile Authenticator Studio can be validated using the OneSpan Authentication Server Framework API method AAL2VerifyMessageSignature().

    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout
    ESC

    Ozzy, our interactive help assistant