Nellcorp Blog

Latest — Mar 29, 2025

A new approach to JWT revocation

Revoking JWT sessions without blacklists? Embed a user-specific secret in tokens via a signed JTI claim (`sjti`). Validate first with your app secret, then the user’s secret. Rotate their secret to revoke all sessions instantly. Secure, scalable, and stateless.

More issues

The Impact of Real-Time Payments on Banking and Consumer Behavior in Angola

Discussing how real-time payment systems are reshaping customer expectations and financial services. On Informal Market and its limitations Angola is one of Africa's top economies, and according to the Angolan national institute for statistics, INE, in 2022 Angola's informal economy employs about 85% of the entire

Vendor Security Lessons from the CrowdStrike Incident

The CrowdStrike incident underscores the need for reliable IT security vendors after a problematic update caused a global outage. This article examines the incident's impact on sectors like banking and healthcare and discusses strategies for mitigating vendor-related risks.

Understanding the Payments Ecossystem: Building a PayFac and Ensuring PCI DSS Compliance

Payment Facilitators (PayFacs) simplify how merchants process payments, offering enhanced customer experiences and operational efficiency. This post will guide you through becoming a PayFac and ensuring compliance with PCI DSS standards, covering essential steps and benefits along the way.

Apple Pay Implementation Review: How Does It Really Work?

This overview explores Apple Pay’s architecture and security, including tokenization and the Secure Element. It also outlines the payment process, detailing interactions with processors and card networks, adhering to key standards like EMVCo and PCI DSS.

More issues

Subscribe to Nellcorp Blog