The Financial Data Exchange (FDX) and the OpenID Foundation (OIDF) have announced an agreement to collaborate in order to advance a common technical standard for the secure exchange of consumer financial information. As online banking evolves and fintech apps grow in popularity, consumers increasingly wish to share their personal account, […]
Guest blog post by Daniel Fett (yes.com), Pedram Hosseyni, and Ralf Küsters (University of Stuttgart). The security of a web protocol is crucial, especially in the domain of financial applications and in other high-stakes environments. For identifying weaknesses in protocols and ensuring security, formal protocol analysis is the state-of-the-art method. […]
The OpenID Foundation launched the OpenID Certification Program in 2015. The Program enables organizations to certify that their OpenID Connect implementations conform to specified profiles of the OpenID Connect standard. The certification program is a tool to help ensure that implementations by different parties will interoperate. It provides assurance to […]
The OpenID Foundation membership has approved the following Financial-grade API (FAPI) specifications as OpenID Implementer’s Drafts: Financial-grade API — Part 1: Read Only API Security Profile Financial-grade API — Part 2: Read & Write API Security Profile Financial-grade API — JWT Secured Authorization Response Mode for OAuth 2.0 (JARM) An […]
The official voting period will be between Tuesday, October 15, 2018 and Tuesday, October 22, 2018, following the 45 day review of the specification. For the convenience of members, voting will actually open on Tuesday, October 8, 2018 for members who have completed their reviews by then, with the voting […]
The OpenID OpenID Financial-grade API Working Group recommends approval of the following specification as an OpenID Implementer’s Draft: Financial-grade API — Part 1: Read Only API Security Profile Financial-grade API — Part 2: Read & Write API Security Profile Financial-grade API — JWT Secured Authorization Response Mode for OAuth 2.0 (JARM) An […]
The 2018 Identiverse Conference provided a timely catalyst for representatives of the OpenID Foundation and the UK Open Banking Implementation Entity (OBIE) to announce their collaboration on the Financial-grade API (FAPI) specification. The Identiverse stage provided an ideal venue to emphasize the importance of building on the award winning OpenID Certification […]
Announcement: The OpenID Foundation announced today it will continue expanding the scope of its award-winning OpenID Certification program, adding new profiles and capabilities. The new Form Post Response Mode profiles were launched this week during the Identiverse conference. The OpenID Foundation is pleased to announce its plans to expand the […]
OpenID Foundation Members: Next Monday, November 6, 2017, the OpenID Foundation is hosting a face-to-face Financial API (FAPI) Working Group meeting in London at Level39. If you would like to participate you’ll need to have signed a contribution agreement that specifies the FAPI Working Group. If you have not […]
The OpenID Foundation membership has approved “Financial API – Part 2: Read and Write API Security Profile” as an OpenID Implementer’s Draft. An Implementer’s Draft is a stable version of a specification providing intellectual property protections to implementers of the specification. The specification is available at: http://openid.net/specs/openid-financial-api-part-2-ID1.html The voting results […]