Security

The Pismo platform uses server-to-server authentication to maintain security. An initial request instructs Pismo to create an access token in the form of a JSON Web Token (JWT). You use this token to send subsequent requests to the platform.

The current Server to Server authentications Pismo supports are:

• Basic authentication with client credentials
• Authentication with OpenID Connect

For more information on mTLS connectivity, refer to Identity connectivity with mTLS.

For Zero balance or Full balance customers providing antifraud webhooks, see how Pismo validates webhooks requests.