RDX Specification

Co-Managed OTP Authentication

Suggest Edits

In this use case, VCAS will manage the creation and validation of the OTP while leveraging the issuer's existing SMS and/or email aggregator. This is the primary recommended OTP solution for most issuers because it allows VCAS to manage the majority of the authentication experience while leveraging the issuer's current aggregator. This gives the issuer the ability to keep the cardholder OTP experience the same and maintain visibility for cardholder inquiries.

ProsConsRDX Calls
VCAS manages OTP creation and validationAn additional API call is requiredStepup
Issuer uses their own aggregator; providing more confidence in delivery rates, cardholder experience, and access to performance inquiriesInitiate Action

Co-Managed Flow Diagram

Required RDX Calls:

  • Stepup
  • Initiate Action
  • Validate

    • Updated 9 months ago