At pawaPay, your security is our top priority. We don’t just talk about keeping your funds safe — we take action to make it happen.

That’s why we added Cryptographic Signatures to our Merchant API. This ensures that you, and only you, can move your funds held with pawaPay.

What is it?

You can now cryptographically sign requests when initiating deposits, payouts, and refunds. Additionally, we will sign every callback you receive from pawaPay, allowing you to verify that these messages haven't been tampered with and are genuinely from us.

This is an optional feature that adds a second layer of secure authentication to your API token. Even if your API token were to be compromised, your funds would still be protected.

How does it work?

We offer multiple cryptographic signing schemes for you to sign the financial requests you send to us. When you enable this feature, we will verify the signature on each request and reject any that aren’t signed by you.

You can also have us sign all callbacks sent from pawaPay, which lets you verify they are authentic and haven’t been altered in transit.

For more details, check out our documentation here.

Key benefits

• Provides an extra layer of cryptographically secure authentication, ensuring only you control your funds at pawaPay.
• Offers cryptographic validation for callbacks, ensuring they come directly from pawaPay and not from anyone else.

With these industry leading security features, you can rest assured that your funds are always safe with pawaPay!

Activate Cryptographic Signatures today to add an extra layer of security to your transactions. Head over to our API Docs to get started!

‍