Platform Ecosystem — Active

v2.0.0

Tyk Enterprise + Apache Camel

Security & Authentication

Zero-trust architecture with differentiated authentication flows per consumer type

Core Principle

Security by Design

Zero-trust architecture with security embedded at every layer. All services enforce authentication, encryption, and data protection from inception.

Authentication Flows by Consumer Type

Consumer Banks

SSO (SAML 2.0 / OIDC)

Federated Single Sign-On for partner bank employees accessing the platform

 Provider: Keycloak

Mobile Apps

OAuth 2.0 (no SSO)

Standard OAuth 2.0 token flow for end-user mobile applications

 Provider: Tyk Gateway

Developer Portal

SSO (OIDC)

Keycloak-managed SSO for developer registration and API key management

 Provider: Keycloak

Service-to-Service

mTLS + API Key

Mutual TLS with API key authentication for backend integrations

 Provider: Tyk Gateway

Tier-Based Rate Limiting

Bronze

500 req/min

Burst750

Monthly500K

PriceIncluded

Starter tier for evaluation and small-scale integrations

Silver

2,000 req/min

Burst3,000

Monthly2M

Price£500/mo

Standard tier for production integrations

Recommended

Gold

10,000 req/min

Burst15,000

Monthly10M

Price£2,000/mo

Premium tier for high-volume partners

Enterprise

Custom

BurstCustom

MonthlyUnlimited

PriceCustom

Bespoke limits with dedicated infrastructure

Security Non-Functional Requirements

auth

OAuth 2.0 + mTLS

encryption

TLS 1.3 / AES-256

compliance

FAPI 2.0, PCI DSS L1

zero Trust

Mandatory

pen Testing

Critical/High: 0, Medium: ≤10

sso

SAML 2.0 / OIDC for Consumer Banks

mobile Auth

OAuth 2.0 (no SSO)