Message transmission security

The message transmission security is guaranteed with message signing, signature validation, and message encryption.

The following diagram illustrates the end-to-end message transmission flow with security considered.


Message transmission security

Figure 1. Message transmission flow

  • Message signing and signature validation is required for all requests and responses.
  • Message encryption is optional based on the merchant's requirements. If there is sensitive information, such as password or certificate, enclosed in a message, it is strongly recommended to encrypt the message.
  • If encryption is adopted, encrypt the message body before it s signed.