A decoupled authentication flow where the PSU provides a dynamic identifier generated with their ASPSP to the TPP (AISP/PISP/CBPII) which is then used by the ASPSP to identify the PSU through the ASPSP app to authenticate and action the TPP request.
Other pages in this section Browser Based Redirection – AIS Browser Based Redirection – PIS App Based Redirection – AIS App Based Redirection – PIS App to Browser Redirection Decoupled Model A: Static PSU Identifier Decoupled Model B: ASPSP Generated Identifier Decoupled Model C: TPP Generated Identifier Decoupled Model D: PSU with a TPP Account ASPSP applies an available exemption Using an Available Exemption with a Customer Identifier
This content is best viewed on a desktop browser. 1 CEG Checklist Requirements 1Not shown in the diagram but as in 1 & 2 in Model A. 2 CEG Checklist Requirements 2Not shown in the diagram but as in 1 & 2 in Model A. 3 CX Considerations 3If PISPs and ASPSPs support Model B then the PISP should provide the PSU information on how the identifier can be generated with their ASPSP and make the PSU aware about how this identifier will be used. 4 CEG Checklist Requirements 4PSUs use the ASPSP app to generate the unique identifier. 5 CX Considerations 5PSUs should be able to easily provide the identifier to the PISP application (e.g. scan the code into the Kiosk in this instance). 6 CEG Checklist Requirements 6After the PSU provides the ASPSP app generated identifier to the PISP, then the ASPSP must display the payment request within the same session of the ASPSP app and clearly mention the amount and the payee. 7 CEG Checklist Requirements 7ASPSPs must apply SCA which should have no more than the number of steps that the PSU would experience when directly accessing the ASPSP mobile app (biometric, passcode, credentials). 8 CX Considerations 8ASPSPs must make the PSU aware that they have been logged off from the ASPSP app and notify them to check back on the originating PISP app. 9 CEG Checklist Requirements 9The PISP must confirm successful confirmation of payment initiation. Select to scroll left Select to scroll right
CEG Checklist Requirements & CX Considerations 1 Not shown in the diagram but as in 1 & 2 in Model A. 22 2 Not shown in the diagram but as in 1 & 2 in Model A. 22 3 If PISPs and ASPSPs support Model B then the PISP should provide the PSU information on how the identifier can be generated with their ASPSP and make the PSU aware about how this identifier will be used. 4 PSUs use the ASPSP app to generate the unique identifier. 6 5 PSUs should be able to easily provide the identifier to the PISP application (e.g. scan the code into the Kiosk in this instance). 6 After the PSU provides the ASPSP app generated identifier to the PISP, then the ASPSP must display the payment request within the same session of the ASPSP app and clearly mention the amount and the payee. 28 7 ASPSPs must apply SCA which should have no more than the number of steps that the PSU would experience when directly accessing the ASPSP mobile app (biometric, passcode, credentials). 1 8 ASPSPs must make the PSU aware that they have been logged off from the ASPSP app and notify them to check back on the originating PISP app. 9 The PISP must confirm successful confirmation of payment initiation. 26
Decoupled Model A: Static PSU Identifier Previous Related articles Please select API specifications Decoupled Model C: TPP Generated Identifier Next