Tag: FAPI

OpenID Foundation Launches New Microsite Focused on Open Banking and Fintech Developers

The OpenID Foundation has launched a new microsite focused on global open banking initiatives and providing resources for fintech developers implementing the Foundation’s Financial-grade API (FAPI). In 2017, the OpenID Foundation’s Financial-grade API (FAPI) Working Group published specifications enabling high-security API access, suitable for accessing financial data and facilitating financial transactions. In 2018, the UK […]

OpenID Certification Program Expands with the Release of Financial-grade API Client Initiated Backchannel Authentication Profile (FAPI-CIBA) Certification

The OpenID Foundation announced today its expansion of the OpenID Certification program with conformance testing and self-certification of Financial-grade API Client Initiated Backchannel Authentication Profile (FAPI-CIBA) OpenID Providers. The ability to self-certify FAPI-CIBA implementations builds on the availability and success of Financial-grade API (FAPI) certifications whereby a number of vendors including banks have certified their […]

Implementer’s Draft of FAPI Client Initiated Backchannel Authentication (CIBA) Profile Approved

The OpenID Foundation membership has approved the following specification as an OpenID Implementer’s Draft: Financial-grade API: Client Initiated Backchannel Authentication Profile An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This is the first Implementer’s Draft of this specification. This specification is a product of […]

Guest Blog: Formal Analysis of the OpenID Financial-grade API

Guest blog post by Daniel Fett (yes.com), Pedram Hosseyni, and Ralf Küsters (University of Stuttgart). The security of a web protocol is crucial, especially in the domain of financial applications and in other high-stakes environments. For identifying weaknesses in protocols and ensuring security, formal protocol analysis is the state-of-the-art method. The OpenID Financial-grade API (FAPI) […]

Implementer’s Drafts of Three FAPI Specifications Approved

The OpenID Foundation membership has approved the following Financial-grade API (FAPI) specifications as OpenID Implementer’s Drafts: Financial-grade API — Part 1: Read Only API Security Profile Financial-grade API — Part 2: Read & Write API Security Profile Financial-grade API — JWT Secured Authorization Response Mode for OAuth 2.0 (JARM) An Implementer’s Draft is a stable […]

Notice of Vote for Implementer’s Drafts of Three FAPI Specifications

The official voting period will be between Tuesday, October 15, 2018 and Tuesday, October 22, 2018, following the 45 day review of the specification. For the convenience of members, voting will actually open on Tuesday, October 8, 2018 for members who have completed their reviews by then, with the voting period still ending on Tuesday, […]

OpenID Certification Expanding to FAPI Specs

Announcement: The OpenID Foundation announced today it will continue expanding the scope of its award-winning OpenID Certification program, adding new profiles and capabilities.  The new Form Post Response Mode profiles were launched this week during the Identiverse conference.  The OpenID Foundation is pleased to announce its plans to expand the scope of the certification program […]