The EIRENE web service offers the option to perform creditworthiness checks. These checks are processed by forwarding the requests to the Intrum API.
To comply with data protection regulations, Intrum encrypts the results prior sending them back to the Post service.
Since the encryption key is negotiated directly between Intrum and the customer, the EIRENE service cannot access the contents of the credit check. Instead, the service simply forwards the encrypted data from Intrum to the customer without modifications.
Before an address verification can begin, the customer generates a shared secret key that must be encrypted prior transmission to Intrum. The transmitted key will be used to encrypt the results generated by the Intrum API.
sequenceDiagram
Customer->>Intrum: Retrieve public key
activate Intrum
Intrum-->>Customer: Public key
deactivate Intrum
activate Customer
Customer->>Customer: Create shared secret key
Customer->>Customer: Encrypt shared secret key
deactivate Customer
The first step of the process will the retrieval of Intrum’s public key, that will be used to encrypt the shared secret key.
A shared secret key is then generated by the customer using the Advanced Encryption Standard. Please refer here for further insights about AES encryption standard.
In the last step the generated shared secret key will be encrypted using Intrum’s public key and stored on the customer’s side for the lifetime of the ERIENE request.
To prevent replay attacks the shared secret key must the renewed with each EIRENE request.
The customer sends a request to EIRENE, providing the address data, the type of comparison, and the encrypted shared secret key.
EIRENE processes the address verification.
The EIRENE results, including the encrypted shared secret key for the creditworthiness check, are forwarded to the Intrum service.
Intrum performs the creditworthiness check, encrypts the results, and hands them back to the EIRENE service.
EIRENE then attaches the creditworthiness check results to it's own calculations and transmits the extended package back to the customer.
The customer then decrypts the results using their key and utilizes the information as needed.
sequenceDiagram
Customer->>EIRENE: Address validation with encrypted shared key
activate EIRENE
EIRENE->>EIRENE: Address validation
EIRENE->>Intrum: Creditworthiness check request
deactivate EIRENE
activate Intrum
Intrum-->>EIRENE: Encrypted creditworthiness data
deactivate Intrum
activate EIRENE
EIRENE-->>Customer: Address validation and creditworthiness check
deactivate EIRENE
activate Customer
Customer->>Customer: Decrypt creditworthiness data
deactivate Customer
The process for creating and encrypting a shared secret key, including a reference implementation, can be found at the following link. This link also provides instructions on how to decrypt the creditworthiness data.
Intrum public key URLs:
- Test https://sandbox-autoid.ubiid.ch/api/v1/public/credit-information/public-key
- Production https://autoid.ubiid.ch/api/v1/public/credit-information/public-key
The EIRENE REST API is provided by the API management platform of Post and can be found searching for Address query Webservice
EIRENE REST API by environment
Refer to the POST endpoint with URL /creditworthiness/queries.
The request expects a JSON body
{
"encryptedSecretKey": "ENCRYPTED_KEY",
"alignmentType": "QUERY_KEY",
"timeOutSecond": 10000,
"address": [
{
"field": "Prename_in",
"value": "Hans"
},
{
"field": "Name_in",
"value": "Muster"
},
{
"field": "StreetName_in",
"value": "Sternmatt"
},
{
"field": "HouseNo_in",
"value": "6"
},
{
"field": "ZIPCode_in",
"value": "6010"
},
{
"field": "TownName_in",
"value": "Kriens"
}
]
}| Element | Type | Description |
|---|---|---|
| encryptedSecretKey | string | The encrypted shared secret key |
| alignmentType | string | Key that identifies the query to be executed |
| timeOutSecond | int | Timeout int ms |
| field | string | Name of the field |
| value | string | Value of the field |
For an in detailed overview of supported field names within the address collection visit the following link and search for Supported field names in table of contents. https://developer.post.ch/en/address-web-services-rest
The response is a JSON document structed as
{
"creditworthinessInfo": {
"cipherText": "CIPHERTEXT",
"associatedData": "ASSOCIATEDDATA"
},
"settlementId": "10777557",
"result": [
{
"field": "Prename",
"value": "Hans"
},
{
"field": "Name",
"value": "Muster"
},
{
"field": "StreetName",
"value": "Sternmatt"
},
{
"field": "HouseNo",
"value": "6"
},
{
"field": "ZIPCode",
"value": "6010"
},
{
"field": "TownName",
"value": "Kriens"
}
]
}Contains the encrypted response (cipherText) and associated data (associatedData) provided by Intrum's API.
Keep in mind these fields are Base64 encoded.
Billing identifier assigned by EIRENE.
Contains the individual elements of the validated address and the status of the query.
Intrum queries the Credit Information module for the creditworthiness check. Based on Intrum's manual the data contained in the response:
| ccsNum | ccsAlpha | Description |
|---|---|---|
| 6 | A | Very good |
| 5 | ||
| 4 | B | Good |
| 3 | ||
| 2 | ||
| 1 | C | Neutral |
| 0 | ||
| -1 | ||
| -2 | D | Bad |
| -3 | ||
| -4 | ||
| -5 | E | Very Bad |
| -6 | ||
| M | Minor | |
| X | Not Known | |
| Z | Deceased |