4 docs tagged with "security"

Our platform supports two levels of API authentication.

Message signatures allow us to verify that API requests come from a valid source and ensure the integrity of each request.

Griffin requires two-factor authentication (2FA) every time you log in or make a payment. You must authenticate using a passkey stored on a security device of your choice.

This guide explains how to verify that the events you receive through webhooks are genuinely from Griffin using HTTP message signatures.