m2pfintech
API Integration

Encryption & Key Exchange

AES-256 payload encryption and RSA-2048 session key exchange for secure API communication.

M2P supports optional request/response body encryption for production environments.

Encryption Architecture

When using the M2P SDK, encryption is handled automatically:

  1. Key Exchange — SDK performs ECDH key exchange on initialization
  2. Auto-Encryption — All subsequent requests are encrypted transparently
  3. Auto-Decryption — All responses are decrypted transparently
No manual encryption implementation needed when using the SDK. The KEY_EXCHANGE API call establishes the secure session.

Direct API Encryption

For server-to-server integrations without SDK:

LayerAlgorithmKey SizeUsage
PayloadAES-256-CBC256-bitEncrypt request/response body
Session KeyRSA-20482048-bitEncrypt the AES session key
TransportTLS 1.2+All API communication

Encryption Flow

Payload encryption is optional in UAT and enabled at the end of UAT cycle before production deployment.

Authentication & Security

OAuth 2.0, JWT, and API Key authentication setup for M2P UPI Platform integration.

Integration Flows

Visual API and webhook flow diagrams for all major UPI operations — onboarding, payments, mandates, disputes.

On this page

Encryption Architecture
SDK Key Exchange (Recommended)
Direct API Encryption
Encryption Flow