Being a Multi-Factor Authentication and Authorization platform, TruValidate Multifactor Authentication implementers expect the platform to be secure.
From day one, TruValidate Multifactor Authentication was built with security as the primary driving factor. There is no use adopting a next generation
authentication system if it’s not secure. When TransUnion set out to build the current generation of the TruValidate Multifactor Authentication API,
a number of factors that affected the eventual selection of TruValidate Multifactor Authentication cryptography methodology.
- It must be generally recognized as an established and secure methodology for cryptography that has withstood the
- scrutiny of peer review.
- It must be an industry standard for cryptography to ease implementation and reduce complexity within the TruValidate Multifactor Authentication
- It must be future proof. Future proof in this context would be defined as:
- Allowing the addition and removal of algorithms as they become mature enough to adopt, or poor enough to abandon, respectively.
- Allowing for increased cipher strength without requiring changes to our API, SDKs, or Customer implementations.
- Implementors should be required to utilize an acceptable minimum in regards to algorithm and cipher strength but
- should be allowed to increase the security strength by choosing more complex algorithms and/or increased
be used for cryptography in the TruValidate Multifactor Authentication API. Some of all of the JOSE standards are used in established protocols
like OAuth, OpenID, and FIDO UAF.
How those standards are utilized within the TruValidate Multifactor Authentication API can be found in the sections below:
TransUnion links to user contributed code as a resource to its
community. TransUnion does not in any way guarantee or warrant
the quality and security of these code bases. User contributed code is supported by the
creators. If you do find a link from the site to user contributed code that is malicious or inappropriate in any
way, please report that link to TransUnion immediately and we will investigate the claim. Submit any issue to
TransUnion support at https://transunion.com/support.