Enhanced Security - mTLS and JOSE

Wise takes security as a paramount concern in its APIs, employing technologies like mTLS (mutual TLS) and JOSE (JSON Object Signing and Encryption) to further secure communications between us and select partners. By adding these mechanisms to our additional security mechanisms, Wise allows for an elevated level of security for select partners.

Mutual TLS using a self-signed certificate

Through mTLS, Wise establishes a two-way, encrypted communication channel, ensuring strict authentication and authorization protocols for accessing its services.

JOSE

We support two JOSE specifications; JSON Web Signature (JWS) and JSON Web Encryption (JWE):

Implementing JWS provides a robust mechanism for creating tamper-proof requests, safeguarding data integrity and authenticity during critical transactional processes.
See JSON Web Signing (JWS).
Implementing JWE ensures only the intended recipient can read the JSON request.
See JSON Web Encryption (JWE).

These heightened security protocols are exclusively made available to specific partners upon request and are subject to certain conditions. Please speak with your implementation manager to review and request access to these features.