Salt Edge releases an open source solution for SCA and dynamic linking under PSD2

Salt Edge presents to the open source community its new project – Salt Edge Authenticator. It is a solution for strong customer authentication (SCA) and dynamic linking developed to bring safety and innovation to the payments market and its end-users.

After the EBA published on 21 June 2019 its opinion on the SCA elements under PSD2, addressing the concerns about the industry readiness to implement SCA into practice, it became obvious that many financial institutions were not prepared to meet the requirements. To assist institutions with it, Salt Edge introduces its latest contribution to open source with the code of Salt Edge Authenticator, created to make online commerce safer and increase customer protection in the new world of open banking. Salt Edge Authenticator securely handles all the actions where SCA should be applied: remote payment transactions, accessing payment accounts, and other types of authorization. Any member of the open source community is welcome and encouraged to ask questions and make contributions to the code: iOS App and Android Appand an example of server implementation

The security of a solution can only be guaranteed when it is easily accessible for audit and formal verification. Open banking and open source have the word “open” in common, meaning both are part of a shared reality with transparency as the main value. And this is exactly what Salt Edge contributes to – greater financial transparency and security for end-users, and innovation in the payments industry. 

In the era of open banking, data exchange involves so many participants that it inevitably increases the security breach risk. This is why Salt Edge chose the safest approach: no confidential data is processed by Salt Edge during customer journey, as end-users are connected straight to the bank. This way, users of the Authenticator app can be sure that their personal data is handled by their financial institution only.

Salt Edge Authenticator does not replace the bank’s existing authentication solutions, it actually adds one more security layer as mandated by PSD2. Salt Edge has developed the technology taking into consideration the already available in banks authentication solutions so its implementation requires minimal adjustments on the bank’s side to meet the SCA and dynamic linking requirements. An example of server implementation is presented to show Authenticator’s integration with the bank’s infrastructure. In addition to the open source project, Salt Edge also provides support & consulting services. These services include full maintenance and proactive monitoring.

“Since SCA plays such a crucial role in the user journey for open banking, Salt Edge believes that in order to push the open banking movement forward, it’s paramount to have a good, secure and easily accessible solution – Salt Edge Authenticator. This solution can be quickly customized for different regulatory standards in different countries, for different banking systems. As the official requirements change, we can adapt the Authenticator user flow in real-time to keep it frictionless and user-friendly,” said Dmitrii Barbasura, CEO at Salt Edge. “We are especially proud to make this project open-sourced since it is developed to protect customers. After all, each of us is a customer and needs to pay online more and more often – it’s nice to know we did a very important job of making this process safer.”

About Salt Edge 

Salt Edge – a financial API platform with PSD2 and open banking solutions. The company has two main vectors of activity: enabling third parties to get access to bank channels via a unified gateway, and developing the technology necessary for banks to become compliant with the directive’s requirements. ISO 27001 certified and AISP licensed under PSD2, the company employs the highest international security measures to ensure stable and reliable connections between financial institutions and their customers. The company is integrated with 3700+ financial institutions in 70+ countries.

More information: www.saltedge.com

Phone number: +1-437-886-3969

E-mail: press@saltedge.com

Salt Edge report

Discover what is the current state of open banking in Europe

Download now

Related articles

10 min read May 2019

The eIDAS Challenge for TPPs under PSD2

Article 30(1)(a) of the RTS provides that ASPSPs are obligated to have in place at least one interface which meets, inter alia, the requirement that AISPs, PISPs and CBPIIs are able to identify themselves towards the ASPSP. For the purpose of identification, ASPSPs and TPPs shall rely on using eIDAS (electronic…

3 min read May 2020

Salt Edge helps Simplifi in accelerating their accounting services via open banking

Simplifi-HQ, an online accounting service provider from New Zealand has chosen Salt Edge, a leader in offering open banking solutions, to speed-up and digitise its software package by accessing financial data of their clients directly from the bank. Simplifi-HQ is an advanced cloud accounting software that covers accountancy, tax, invoicing,…

3 min read May 2019

Salt Edge Open Banking API now supports eIDAS PSD2 certificates

Salt Edge is the first Open Banking vendor to add the support of eIDAS PSD2 certificates in its system for TPP identification when they access ASPSPs’ channels. Now, the company’s clients that act as payment service providers (AISP, PISP, PIISP, ASPSP) and that use Salt Edge as a technical service…

8 min read Jan 2020

Why PISPs should not be required to perform AML checks toward PSUs

According to PSD2, a payment initiation service provider (PISP) represents a payment institution, and thus falls under the Anti-Money Laundering (AML) and Anti-Terrorist Financing (ATF) regulations. Yet, for many market participants, the setup of these checks from PISP’s side is not clear. I think this is an interesting topic that…