Skip to main content

4. Security Features

Strong end to end security and data protection is implemented in NPI. Some of the key security features are as follows:

  1. All communications between NPI and the involving parties will be done in Layer 2 VPN. Additionally,source IP of the parties will be white listed in the NPI inside L2 VPN.

  2. OAuth 2.0 is implemented for API security, where basic authentication and client specific credentials will be used to generate the access and refresh token. These access and refresh token will be further used to access the API resources.

  3. Message level encryption to generate transaction tokens are enabled.

  4. Record level security with masking of confidential information are enabled.

  5. ISMS security as per the internal policy of NCHL have been implemented.