Checklist ref
2AU.03.15
Area
2AU. Redirect to Web with OTP
Wireframe ref
15
Type
Technical Standard
Requirement level
MUST NOT
Participant
Data Holder
Statement
Where a data holder supports the ‘Redirect to Web with OTP’ flow: • The delivery mechanism for the OTP is at the discretion of the data holder, but MUST align to existing and preferred channels for the customer. NB: This is a subset of the Technical Standard referenced.
Reference
Security Profile, Credential Requirements, One Time Password Credential Requirements | CDR Rule 4.24 | CX Research 12, 27
Example
Authenticate: Redirect to Web with One Time Password
Version introduced
1.4.0 or earlier
Date introduced
12 August 2020 or earlier
Date modified
22 September 2025
Status
Active