Recommendations for Using CWYS Data Signing

In our previous posts, we reviewed the CWYS (Confirm What You See) mechanism, which allows generating ОТР tied to the data being protected. Users are often faced with this question: what data should be included in the ОТР generation for ensure the best protection for the system.

Let’s consider the most common situation where the CWYS function is used – verification of transactions in payment and banking systems. To ensure protection for such transactions, we recommend using the following data:

CWYS function for verification of transactions

CWYS function is used for verification of transactions

  • amount;
  • currency;
  • payee;
  • identifier or transaction number;
  • user’s current balance or balance after transaction;
  • any additional data that needs to be protected against modification or falsification from the point of view of your business processes, for example, transaction date, user’s IP address, or payer.

It is important to note that at each step of working with Protectimus only the current data that a user is working with at this moment should be used, not cached data; we are talking about the balance which is sometimes recalculated based on a certain system event, and a user sees it reflected as of a certain moment in time.

Using such details in the ОТР generation process protects them from being modified or falsified between creating and performing a transaction, thus protecting a user against losing money and protecting your system against reputation risks and other types of risks.

Author: Denis Shokotko

Once upon a time, in a small town there lived a boy named little Denis. As years went by and the boy grew up, his interest in everything new and unknown grew, too. Denis was particularly interested in information technologies. And, his feelings were reciprocated. His new hobby was so fascinating that he decided to devote the rest of his life to it. Soon after that, he developed his first software program, then another one and another one, and more... In software development, no one could compare to him. His talent could not but be noticed and appreciated. Before long, he is among the originators of a new innovative project. And now, Protectimus in Denis’ life is like a mistress that would not share him with another or put up with any unfaithfulness :)

Share This Post On

Submit a Comment

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Subscribe To Our Newsletter

Subscribe To Our Newsletter

Join our mailing list to receive the latest news and updates from Protectimus blog.

You have successfully subscribed!

Share This