Orchestration SDK overview

The Orchestration SDK enables mobile developers to integrate the main features provided by OneSpan Mobile Security Suite in their mobile application with minimal effort:

• Two-factor authentication
• Transaction signing
• Secure provisioning
• Secure Channel
• Secure storage
• Password protection
• Biometric recognition
• Multi-device management

Very few calls are required to leverage major security features in a mobile application. In addition, the Orchestration SDK provides facilities to orchestrate the mobile application and authenticate users smartly and securely after a risk evaluation is performed on the server-side.

All data exchanged between the mobile application integrating the Orchestration SDK and the application server using the OneSpan Trusted Identity platform is encapsulated into orchestration commands, to hide the complexity of the integration.

The Orchestration SDK does not handle the communication layers required to exchange the orchestration commands with the server (e.g. network, push notification messages, or image scanning). This part must be handled by the mobile application integrating the Orchestration SDK.

The orchestration commands are encoded as hexadecimal strings and are protected by the Secure Channel feature to ensure the confidentiality, integrity, and non-repudiation of the exchanged data. For more information about Secure Channel, see Secure Channel.

Version support

For information about the Orchestration SDK versions that are supported by OneSpan Intelligent Adaptive Authentication and OneSpan Cloud Authentication, refer to Intelligent Adaptive Authentication Release Notes and OneSpan Cloud Authentication Release Notes, respectively.

For more detailed information about the SDK and integration instructions, refer to the Orchestration SDK Integration Guide at Mobile Security Suite Integration Guides.