Mike Leszcz


OpenID Foundation Launches New Microsite Focused on Open Banking and Fintech Developers

The OpenID Foundation has launched a new microsite focused on global open banking initiatives and providing resources for fintech developers implementing the Foundation’s Financial-grade API (FAPI). In 2017, the OpenID Foundation’s Financial-grade API (FAPI) Working Group published specifications enabling high-security API access, suitable for accessing financial data and facilitating financial […]


OpenID Connect for Identity Assurance

This week the OpenID Foundation announced the approval of the Implementer’s Draft of the OpenID Connect for Identity Assurance specification. This new specification is a product of the OpenID Connect Working group. An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. […]


Guest Blog: Implementing App-to-App Authorisation in OAuth2/OpenID Connect

What is app2app? App2app is a mechanism that allows mobile apps performing OAuth2 or OpenID Connect based authentication to offer a much simpler faster flow if the user already has an app provided by the authorization server owner installed on their mobile device. Here’s how it actually looks when I […]


Welcoming New OpenID Foundation Vice-Chairman

Before I welcome our new Vice-Chairman, on behalf of the OpenID Foundation, I would like to thank Adam Dawes of Google who has served on the Board of Directors for years as Vice-Chairman. Adam’s contributions to the board, the community and his leadership of Working Groups, most recently the groundbreaking […]


OpenID Certification Program Expands with the Release of Financial-grade API Client Initiated Backchannel Authentication Profile (FAPI-CIBA) Certification

The OpenID Foundation announced today its expansion of the OpenID Certification program with conformance testing and self-certification of Financial-grade API Client Initiated Backchannel Authentication Profile (FAPI-CIBA) OpenID Providers. The ability to self-certify FAPI-CIBA implementations builds on the availability and success of Financial-grade API (FAPI) certifications whereby a number of vendors […]


Registration Open for OpenID Foundation Workshop at Verizon Media on Monday, September 30, 2019

OpenID Foundation Workshops provide technical insight and influence on current Internet identity standards. The workshops provide updates on all OpenID Foundation working groups as well the OpenID Certification Program.  Please note  we’ve added a technology leaders discussion on key digital identity topics to the agenda. The goal is to encourage […]


Financial Data and Technology Association and OpenID Foundation in Global Agreement

Not-for-profits to campaign jointly on open finance initiatives The OpenID Foundation (OIDF), the international standardisation organisation which maintains a standard known as the Financial-grade API (FAPI), and the Financial Data and Technology Association (FDATA Global), the global trade association for companies working to promote ‘open finance’ and best practise financial […]


Financial Data Exchange, OpenID Foundation Take Step Towards Global Standard for Financial Data Sharing

The Financial Data Exchange (FDX) and the OpenID Foundation (OIDF) have announced an agreement to collaborate in order to advance a common technical standard for the secure exchange of consumer financial information. As online banking evolves and fintech apps grow in popularity, consumers increasingly wish to share their personal account, […]


Guest Blog: Formal Analysis of the OpenID Financial-grade API

Guest blog post by Daniel Fett (yes.com), Pedram Hosseyni, and Ralf Küsters (University of Stuttgart). The security of a web protocol is crucial, especially in the domain of financial applications and in other high-stakes environments. For identifying weaknesses in protocols and ensuring security, formal protocol analysis is the state-of-the-art method. […]