Search
Sign-In
OpenID Foundation > FAPI 2.0

Tag: FAPI 2.0

FAPI 2.0 Security Profile and Attacker Model Final Specifications Approved

The OpenID Foundation membership has approved the following OpenID Final Specifications:   FAPI 2.0 Security Profile: https://openid.net/specs/fapi-security-profile-2_0-final.html FAPI 2.0 Attacker Model: https://openid.net/specs/fapi-attacker-model-2_0-final.html A Final Specification provides intellectual property protections to implementers of the specification and is not subject to further revision. The FAPI Final Specifications are the product of the FAPI Working Group.   The voting results […]

Public Review Period for Proposed Final FAPI 2.0 Security Profile and Attacker Model Specifications

The OpenID Foundation’s FAPI Working Group recommends approval of the following specifications as OpenID Final Specifications. FAPI 2.0 Security Profile Other formats:  XML, MD FAPI 2.0 Attacker Model Other formats:  XML, MD A Final Specification provides intellectual property protections to implementers of the specification and is not subject to further revision. This note starts the 60-day public review period […]

FAPI 2.0 Conformance Tests Now Support DPoP

The OpenID Foundation is pleased to announce the release of DPoP (Demonstration of Proof-of-Possession, RFC 9449) support in FAPI 2.0 Conformance Tests. Implementers can now certify their solutions with DPoP, adding an additional layer of security for client authentication. This update follows the beta phase and addresses the community’s feedback on DPoP testing. DPoP tests […]

Formal Security Analysis of FAPI 2.0 Message Signing, DCR, DCM and FAPI-CIBA Completed

Following the publication of the formal security analysis of the FAPI 2.0 Security Profile in December 2022, a second round of analysis has now been completed, extending it to include FAPI 2.0 Message Signing, Dynamic Client Registration (DCR), Dynamic Client Management (DCM), and FAPI-CIBA. The analysis was co-funded by the Australian Government and the OpenID […]

Second Implementer’s Draft of Grant Management for OAuth 2.0 Approved

The OpenID Foundation membership has approved the following Financial-grade API (FAPI) specification as an OpenID Implementer’s Draft: Grant Management for OAuth 2.0 An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This is the first Implementer’s Draft of this specification. The Implementer’s Draft is available […]

Implementer’s Draft of FAPI 2.0 Message Signing Approved

The OpenID Foundation membership has approved the following Financial-grade API (FAPI) specification as an OpenID Implementer’s Draft: FAPI 2.0 Message Signing An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. This is the first Implementer’s Draft of this specification. The Implementer’s Draft is available at: […]

First FAPI 2.0 Certifications Published

OpenID Foundation is pleased to announce that the first set of FAPI 2.0 self-certifications have been published and can now be viewed on the Certification Listings. We congratulate Authlete, Cloudentity, ConnectID, Ping Identity, and Raidiam for achieving compliance with the current FAPI 2.0 certifications and for being thought leaders on the leading edge of this […]

“Exploring Financial-grade API (FAPI) with Torsten” Podcast is Live

The OpenID Foundation is pleased to sponsor the Identity, Unlocked second season premiere podcast featuring host Vittorio Bertocci and special guest Torsten Lodderstedt, “Exploring Financial-grade API (FAPI) with Torsten”. Torsten is a long time member of and contributor to the OpenID Foundation. Torsten has contributed significantly to the FAPI security profile and is the co-chair […]

Connect with us

Rss Twitter Linkedin Youtube At

© Copyright | OpenID Foundation | All Rights Reserved l Read our Privacy Policy

Adjust Cookie Setting