artin/OBP-API
1
0
Fork 0
mirror of https://github.com/OpenBankProject/OBP-API.git synced 2026-02-06 11:06:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

docfix: Dynamic Linking glossary item.

Browse Source
This commit is contained in:
simonredfern 2026-01-20 06:36:24 +01:00
parent 0e9a69dfe6
commit 3a77043bfc
1 changed files with 11 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
obp-api/src/main/scala/code/api/util/Glossary.scala
View File

@ -3600,7 +3600,17 @@ object Glossary extends MdcLoggable {
glossaryItems += GlossaryItem(
title = "Dynamic linking (PSD2 context)",
description =
s"""""".stripMargin)
s"""Dynamic linking is a security requirement under PSD2's Strong Customer Authentication (SCA) rules.
|
|When a payer initiates an electronic payment transaction, the authentication code must be dynamically linked to:
|
|1. **The amount** of the transaction
|2. **The payee** (recipient) of the transaction
|
|This means if either the amount or payee is modified after authentication, the authentication code becomes invalid. This protects against man-in-the-middle attacks where an attacker might try to redirect funds or change the payment amount after the user has authenticated.
|
|The requirement is specified in Article 97(2) of PSD2 and further detailed in the Regulatory Technical Standards (RTS) on SCA (Articles 5 and 6).
|""".stripMargin)
glossaryItems += GlossaryItem(
title = "TPP",