SlideShare uma empresa Scribd logo

Identiverse 2019 - Mark Perry - Open Banking Around The World

Transferir como PPTX, PDF
Mark Perry
Mark Perry

A summary of Open Banking status around the world, with emphasis on Digital Identity Security standards used and some of the issues uncovered while the author has been involved int he Australian Open Banking (CDR) process.

Tecnologia
1 de 24
® OPEN BANKING AROUND THE WORLD WHERE ARE WE AND WHAT HAVE WE LEARNED? MARK PERRY APAC CTO, PING IDENTITY markperry@pingidentity.com markperryau
® Worldwide Momentum
® Open Banking Summary • Open Standards, not Open Access. Participants are certified. • Some jurisdictions focus on government regulation, others on industry cooperation • Two categories of content APIs • Access to consumer banking transactions (used by data aggregators) • Payments (used by third party payment initiators) • Three components of Open Banking standards • Content APIs • Security APIs • User Experience (authentication, consent, etc.) • Based on OAuth2, some use FAPI (OpenID Connect) • Where standards are nascent, divergence is greatest • e.g. end user consent
® Example Architecture
® United Kingdom The Trailblazers
® UK — Now at Version 3 • Access to transaction data (one account type initially) • Initiate payments • Central bank-run body (OBIE) certifies participants, runs central directory • Based on FAPI with Consent Object • eIDAS • Learnings • User Experience is key. No standard authentication flow. • Banks found it difficult to be compliant on Day 1 • Difficult for Fintechs due to bank outages, API errors, …
® Australia Sights Set Beyond Open Banking…
® AU — Consumer Data Right • Banking is the first vertical, but Energy and Telco efforts started • Transaction Data only (wide range of account types) • Payments in the future. • Government-led effort, 3 government bodies • Department of Treasury — legislation • Australian Competition and Consumer Commission — Framework, rules • Data61 — standards • Legislation delayed, standards incomplete, slow to begin central directory • Production date delayed until February 2020 for Big 4 banks
® New Zealand A Different Approach
® NZ — Co-operation, Payments First • Industry-led effort • Two largest banks and two Fintechs • Focused on payments only • Aim to reduce credit card transaction fees to zero • Based on OAuth2 • Now starting on transaction data • Moving to FAPI
® Europe PSD2 & Berlin Group
® EU — Strong regulation, diverse outcomes • Initial standard was not definitive enough • Bank implementations are different and interoperability is complex • Berlin Group was formed to define common standards • “Flexible framework” • Screen-scraping is not allowed, but… • Banks must provide access very similar to screen-scraping • TPPs using this interface must digitally sign the messages to identify themselves • TPPs must use APIs if they are available • eIDAS is mandated
® Singapore Limited coverage, many flavours
® SG — Strong guidelines, voluntary adoption • 2017 release of “API Playbook” as reference guide • No single standard • No mandated timelines for banks. Adoption of OB is voluntary. • Government believes innovation will drive adoption • So far: • Limited to Singapore’s established, traditional banks • Third parties excluded from taking part • No licenses issued to neo or digital-only banks • Banks are using OAuth2
® Japan Consensus-driven
® JP — Government-led, Consensus- driven • Regulator leads, industry follows, consensus is key. • Currently 12 major providers of core/internet banking systems • Everyone’s a bit different • Each have layered on an “open banking” API of their own • Different OAuth2 scopes • Security is varied: API based security, IPSec, fintechs whitelisted at banks • Some use OAuth2, some OIDC • Don’t need same visibility of consent on both sides • Low number of APIs at this time, take up has been reasonable • Banks using third party ID to correlate identities across silos
® Hong Kong Progress, following neighbours
® HK — High level details at this time • Government mandated • Starting with publicly available product data • Interest rates • Fees • ATM locations • Access to transaction data and payment initiation in the future • Based on OAuth2 — although details are very high level • Likely to be similar outcomes to Singapore at this stage
® USA Piecemeal approach, industry body formed
® US — Separate banks building APIs, FDX industry body created • Intuit’s Mint uses OAuth tokens to connect to Chase and Bank of America APIs, instead of screenscraping • In October 2018, Financial Data Exchange (FDX) was launched • Non-profit organisation made up of banks and fintechs • Introduced the Durable Data API, now called FDX API • Uses OAuth 2 • No certification program as yet • Working with FAPI WG
® Others… Open Banking World Tour… coming soon to a country near you!
® Other Countries’ Open Banking Efforts
® Finally… Open Banking is Here to Stay! • Identity Security Professionals need to lead • Get involved in your local OB standards process • Security is key… don’t let other IT professionals discount it! • Build on the open standards that are proven and tested • Strong focus on UX and consent needed, otherwise end users will drop off • There’s a lot at stake for the industry: banks, fintechs and most importantly — consumers
®

Recomendados

Chances of open banking
Chances of open banking Chances of open banking
Chances of open banking Netcetera
 
Open banking-Future of Banking
Open banking-Future of BankingOpen banking-Future of Banking
Open banking-Future of Bankingfarhan ali
 
Demystifying Open Banking
Demystifying Open BankingDemystifying Open Banking
Demystifying Open Bankingaccenture
 
Open Banking in Australia - An Open Forum
Open Banking in Australia - An Open Forum Open Banking in Australia - An Open Forum
Open Banking in Australia - An Open Forum WSO2
 
Open Banking - The Digital Transformation Opportunity in Disguise
Open Banking - The Digital Transformation Opportunity in Disguise Open Banking - The Digital Transformation Opportunity in Disguise
Open Banking - The Digital Transformation Opportunity in Disguise WSO2
 
DBX Open Banking
DBX Open BankingDBX Open Banking
DBX Open BankingBase Camp
 
Open Banking APIs with case studies for senior stakeholders
Open Banking APIs with case studies for senior stakeholdersOpen Banking APIs with case studies for senior stakeholders
Open Banking APIs with case studies for senior stakeholdersMimi Ajayi, PMC
 
apidays LIVE London 2021 - The State of Open Banking APIs by Mark Boyd, Platf...
apidays LIVE London 2021 - The State of Open Banking APIs by Mark Boyd, Platf...apidays LIVE London 2021 - The State of Open Banking APIs by Mark Boyd, Platf...
apidays LIVE London 2021 - The State of Open Banking APIs by Mark Boyd, Platf...apidays
 

Recomendados

Chances of open banking
Chances of open banking Chances of open banking
Chances of open banking Netcetera
 
Open banking-Future of Banking
Open banking-Future of BankingOpen banking-Future of Banking
Open banking-Future of Bankingfarhan ali
 
Demystifying Open Banking
Demystifying Open BankingDemystifying Open Banking
Demystifying Open Bankingaccenture
 
Open Banking in Australia - An Open Forum
Open Banking in Australia - An Open Forum Open Banking in Australia - An Open Forum
Open Banking in Australia - An Open Forum WSO2
 
Open Banking - The Digital Transformation Opportunity in Disguise
Open Banking - The Digital Transformation Opportunity in Disguise Open Banking - The Digital Transformation Opportunity in Disguise
Open Banking - The Digital Transformation Opportunity in Disguise WSO2
 
DBX Open Banking
DBX Open BankingDBX Open Banking
DBX Open BankingBase Camp
 
Open Banking APIs with case studies for senior stakeholders
Open Banking APIs with case studies for senior stakeholdersOpen Banking APIs with case studies for senior stakeholders
Open Banking APIs with case studies for senior stakeholdersMimi Ajayi, PMC
 
apidays LIVE London 2021 - The State of Open Banking APIs by Mark Boyd, Platf...
apidays LIVE London 2021 - The State of Open Banking APIs by Mark Boyd, Platf...apidays LIVE London 2021 - The State of Open Banking APIs by Mark Boyd, Platf...
apidays LIVE London 2021 - The State of Open Banking APIs by Mark Boyd, Platf...apidays
 
apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...
apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...
apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...apidays
 
The Power Of Open Banking Coupled With Artificial Intelligence
The Power Of Open Banking Coupled With Artificial IntelligenceThe Power Of Open Banking Coupled With Artificial Intelligence
The Power Of Open Banking Coupled With Artificial IntelligenceIndusNetMarketing
 
Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...
Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...
Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...FinTechLabs.io
 
Open Banking - Opening the door to Digital Transformation
Open Banking - Opening the door to Digital Transformation Open Banking - Opening the door to Digital Transformation
Open Banking - Opening the door to Digital Transformation WSO2
 
Open banking standards: The future of banks?
Open banking standards: The future of banks?Open banking standards: The future of banks?
Open banking standards: The future of banks?Initio
 
The UK Fintech Market
The UK Fintech MarketThe UK Fintech Market
The UK Fintech MarketUKinBrazilNetwork
 
ThoughtWorks: Monetising Open Banking
ThoughtWorks: Monetising Open Banking ThoughtWorks: Monetising Open Banking
ThoughtWorks: Monetising Open Banking Thoughtworks
 
How Banking as a Service Will Keep Banks Digitally Relevant and Growing
How Banking as a Service Will Keep Banks Digitally Relevant and GrowingHow Banking as a Service Will Keep Banks Digitally Relevant and Growing
How Banking as a Service Will Keep Banks Digitally Relevant and GrowingCognizant
 
Webinar: Practical use-cases to monetize Open Banking APIs
Webinar: Practical use-cases to monetize Open Banking APIsWebinar: Practical use-cases to monetize Open Banking APIs
Webinar: Practical use-cases to monetize Open Banking APIsShubaS4
 
FABRIC - Open Banking Teaser
FABRIC - Open Banking TeaserFABRIC - Open Banking Teaser
FABRIC - Open Banking TeaserGavin Payne
 
IBM Report Final
IBM Report FinalIBM Report Final
IBM Report FinalÁlvaro Llanza
 
Ubank overview
Ubank overviewUbank overview
Ubank overviewUBANK
 
apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...
apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...
apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...apidays
 
apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...
apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...
apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...apidays
 
Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]Kannan Srinivasan
 
apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...
apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...
apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...apidays
 
APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...
APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...
APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...apidays
 
Idc finansal 2017 open banking
Idc finansal 2017 open bankingIdc finansal 2017 open banking
Idc finansal 2017 open bankingAli Çakiroglu
 
The Human Chain Open Banking - The Future of Payments White Paper V1.1
The Human Chain Open Banking - The Future of Payments White Paper V1.1The Human Chain Open Banking - The Future of Payments White Paper V1.1
The Human Chain Open Banking - The Future of Payments White Paper V1.1Brendan Jones
 
Yes Bank Nmims devil's advocate
Yes Bank Nmims devil's advocateYes Bank Nmims devil's advocate
Yes Bank Nmims devil's advocateMayank Agrawal
 
BizDay: Improving Remittances in the World's 2nd Largest Corridor, Digiledge
BizDay: Improving Remittances in the World's 2nd Largest Corridor, DigiledgeBizDay: Improving Remittances in the World's 2nd Largest Corridor, Digiledge
BizDay: Improving Remittances in the World's 2nd Largest Corridor, DigiledgeR3
 
Banking Digital Currencies Seminar Presented by DCG
Banking Digital Currencies Seminar Presented by DCGBanking Digital Currencies Seminar Presented by DCG
Banking Digital Currencies Seminar Presented by DCGDigital Currency Group
 

Mais conteúdo relacionado

Mais procurados

apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...
apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...
apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...apidays
 
The Power Of Open Banking Coupled With Artificial Intelligence
The Power Of Open Banking Coupled With Artificial IntelligenceThe Power Of Open Banking Coupled With Artificial Intelligence
The Power Of Open Banking Coupled With Artificial IntelligenceIndusNetMarketing
 
Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...
Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...
Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...FinTechLabs.io
 
Open Banking - Opening the door to Digital Transformation
Open Banking - Opening the door to Digital Transformation Open Banking - Opening the door to Digital Transformation
Open Banking - Opening the door to Digital Transformation WSO2
 
Open banking standards: The future of banks?
Open banking standards: The future of banks?Open banking standards: The future of banks?
Open banking standards: The future of banks?Initio
 
ThoughtWorks: Monetising Open Banking
ThoughtWorks: Monetising Open Banking ThoughtWorks: Monetising Open Banking
ThoughtWorks: Monetising Open Banking Thoughtworks
 
How Banking as a Service Will Keep Banks Digitally Relevant and Growing
How Banking as a Service Will Keep Banks Digitally Relevant and GrowingHow Banking as a Service Will Keep Banks Digitally Relevant and Growing
How Banking as a Service Will Keep Banks Digitally Relevant and GrowingCognizant
 
Webinar: Practical use-cases to monetize Open Banking APIs
Webinar: Practical use-cases to monetize Open Banking APIsWebinar: Practical use-cases to monetize Open Banking APIs
Webinar: Practical use-cases to monetize Open Banking APIsShubaS4
 
FABRIC - Open Banking Teaser
FABRIC - Open Banking TeaserFABRIC - Open Banking Teaser
FABRIC - Open Banking TeaserGavin Payne
 
Ubank overview
Ubank overviewUbank overview
Ubank overviewUBANK
 
apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...
apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...
apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...apidays
 
apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...
apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...
apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...apidays
 
Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]Kannan Srinivasan
 
apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...
apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...
apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...apidays
 
APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...
APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...
APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...apidays
 
Idc finansal 2017 open banking
Idc finansal 2017 open bankingIdc finansal 2017 open banking
Idc finansal 2017 open bankingAli Çakiroglu
 
The Human Chain Open Banking - The Future of Payments White Paper V1.1
The Human Chain Open Banking - The Future of Payments White Paper V1.1The Human Chain Open Banking - The Future of Payments White Paper V1.1
The Human Chain Open Banking - The Future of Payments White Paper V1.1Brendan Jones
 
Yes Bank Nmims devil's advocate
Yes Bank Nmims devil's advocateYes Bank Nmims devil's advocate
Yes Bank Nmims devil's advocateMayank Agrawal
 

Mais procurados (20)

apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...
apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...
apidays LIVE Australia 2021 - Open Banking: Successful Implementation Strateg...
 
The Power Of Open Banking Coupled With Artificial Intelligence
The Power Of Open Banking Coupled With Artificial IntelligenceThe Power Of Open Banking Coupled With Artificial Intelligence
The Power Of Open Banking Coupled With Artificial Intelligence
 
Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...
Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...
Open Banking: Lessons from the UK #fapisum - Japan/UK Open Banking and APIs S...
 
Open Banking - Opening the door to Digital Transformation
Open Banking - Opening the door to Digital Transformation Open Banking - Opening the door to Digital Transformation
Open Banking - Opening the door to Digital Transformation
 
Open banking standards: The future of banks?
Open banking standards: The future of banks?Open banking standards: The future of banks?
Open banking standards: The future of banks?
 
The UK Fintech Market
The UK Fintech MarketThe UK Fintech Market
The UK Fintech Market
 
ThoughtWorks: Monetising Open Banking
ThoughtWorks: Monetising Open Banking ThoughtWorks: Monetising Open Banking
ThoughtWorks: Monetising Open Banking
 
How Banking as a Service Will Keep Banks Digitally Relevant and Growing
How Banking as a Service Will Keep Banks Digitally Relevant and GrowingHow Banking as a Service Will Keep Banks Digitally Relevant and Growing
How Banking as a Service Will Keep Banks Digitally Relevant and Growing
 
Webinar: Practical use-cases to monetize Open Banking APIs
Webinar: Practical use-cases to monetize Open Banking APIsWebinar: Practical use-cases to monetize Open Banking APIs
Webinar: Practical use-cases to monetize Open Banking APIs
 
FABRIC - Open Banking Teaser
FABRIC - Open Banking TeaserFABRIC - Open Banking Teaser
FABRIC - Open Banking Teaser
 
IBM Report Final
IBM Report FinalIBM Report Final
IBM Report Final
 
Ubank overview
Ubank overviewUbank overview
Ubank overview
 
apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...
apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...
apidays LIVE Jakarta - Connecting the digital economy in South East Asia with...
 
apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...
apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...
apidays LIVE Hong Kong 2021 - Enterprise Integration Patterns for OpenAPI Ini...
 
Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]
 
apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...
apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...
apidays LIVE India - Banking Redefined - Decoding the API era for Indian bank...
 
APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...
APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...
APIdays Singapore 2019 - Open Banking is Here to Stay: How Will You Benefit f...
 
Idc finansal 2017 open banking
Idc finansal 2017 open bankingIdc finansal 2017 open banking
Idc finansal 2017 open banking
 
The Human Chain Open Banking - The Future of Payments White Paper V1.1
The Human Chain Open Banking - The Future of Payments White Paper V1.1The Human Chain Open Banking - The Future of Payments White Paper V1.1
The Human Chain Open Banking - The Future of Payments White Paper V1.1
 
Yes Bank Nmims devil's advocate
Yes Bank Nmims devil's advocateYes Bank Nmims devil's advocate
Yes Bank Nmims devil's advocate
 

Semelhante a Identiverse 2019 - Mark Perry - Open Banking Around The World

BizDay: Improving Remittances in the World's 2nd Largest Corridor, Digiledge
BizDay: Improving Remittances in the World's 2nd Largest Corridor, DigiledgeBizDay: Improving Remittances in the World's 2nd Largest Corridor, Digiledge
BizDay: Improving Remittances in the World's 2nd Largest Corridor, DigiledgeR3
 
Banking Digital Currencies Seminar Presented by DCG
Banking Digital Currencies Seminar Presented by DCGBanking Digital Currencies Seminar Presented by DCG
Banking Digital Currencies Seminar Presented by DCGDigital Currency Group
 
Making Blockchain Real for Business Explained - ibm
Making Blockchain Real for Business Explained - ibmMaking Blockchain Real for Business Explained - ibm
Making Blockchain Real for Business Explained - ibmDiego Alberto Tamayo
 
Blockchain explained-v2.09
Blockchain explained-v2.09Blockchain explained-v2.09
Blockchain explained-v2.09Milan Hazra
 
Blockchain-Explained-v2.09.pdf
Blockchain-Explained-v2.09.pdfBlockchain-Explained-v2.09.pdf
Blockchain-Explained-v2.09.pdfArvindKumar265041
 
Grow VC Group presentation at Crypto Funding Summit in Los Angeles
Grow VC Group presentation at Crypto Funding Summit in Los AngelesGrow VC Group presentation at Crypto Funding Summit in Los Angeles
Grow VC Group presentation at Crypto Funding Summit in Los AngelesGrow VC Group
 
Corporate Treasury Bank Tieto public
Corporate Treasury Bank Tieto publicCorporate Treasury Bank Tieto public
Corporate Treasury Bank Tieto publicArne Kvaale
 
FIDO & PSD2: Solving the Strong Customer Authentication Challenge in Europe
FIDO & PSD2: Solving the Strong Customer Authentication Challenge in EuropeFIDO & PSD2: Solving the Strong Customer Authentication Challenge in Europe
FIDO & PSD2: Solving the Strong Customer Authentication Challenge in EuropeFIDO Alliance
 
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...apidays
 
INTERFACE, by apidays - The UK Open Banking Story
INTERFACE, by apidays - The UK Open Banking StoryINTERFACE, by apidays - The UK Open Banking Story
INTERFACE, by apidays - The UK Open Banking Storyapidays
 
Blockchain & Islamic Finance
Blockchain & Islamic FinanceBlockchain & Islamic Finance
Blockchain & Islamic FinanceFarrukh Habib
 
Security and Authentication at a Low Cost
Security and Authentication at a Low CostSecurity and Authentication at a Low Cost
Security and Authentication at a Low CostDonald Malloy
 
DCG Enterprise Blockchain Workshop Oct 2017
DCG Enterprise Blockchain Workshop Oct 2017DCG Enterprise Blockchain Workshop Oct 2017
DCG Enterprise Blockchain Workshop Oct 2017Digital Currency Group
 
BizDay: Blockchain for Procure to Pay Bank as a Platform Strategy, Digital Ve...
BizDay: Blockchain for Procure to Pay Bank as a Platform Strategy, Digital Ve...BizDay: Blockchain for Procure to Pay Bank as a Platform Strategy, Digital Ve...
BizDay: Blockchain for Procure to Pay Bank as a Platform Strategy, Digital Ve...R3
 
Grow VC Group: Digital Hybrid Finance
Grow VC Group: Digital Hybrid FinanceGrow VC Group: Digital Hybrid Finance
Grow VC Group: Digital Hybrid FinanceJouko Ahvenainen
 
ArabNet Beirut - Keynote: Open Banking - To be or not to be? by Open Bank Pr...
ArabNet Beirut - Keynote: Open Banking - To be or not to be? by Open Bank Pr...ArabNet Beirut - Keynote: Open Banking - To be or not to be? by Open Bank Pr...
ArabNet Beirut - Keynote: Open Banking - To be or not to be? by Open Bank Pr...ArabNet ME
 
Keynote: Open Banking - To be or not to be? by Open Bank Project by ArabNet B...
Keynote: Open Banking - To be or not to be? by Open Bank Project by ArabNet B...Keynote: Open Banking - To be or not to be? by Open Bank Project by ArabNet B...
Keynote: Open Banking - To be or not to be? by Open Bank Project by ArabNet B...ArabNet ME
 

Semelhante a Identiverse 2019 - Mark Perry - Open Banking Around The World (20)

BizDay: Improving Remittances in the World's 2nd Largest Corridor, Digiledge
BizDay: Improving Remittances in the World's 2nd Largest Corridor, DigiledgeBizDay: Improving Remittances in the World's 2nd Largest Corridor, Digiledge
BizDay: Improving Remittances in the World's 2nd Largest Corridor, Digiledge
 
Banking Digital Currencies Seminar Presented by DCG
Banking Digital Currencies Seminar Presented by DCGBanking Digital Currencies Seminar Presented by DCG
Banking Digital Currencies Seminar Presented by DCG
 
Latest Trends Payments Industry
Latest Trends Payments IndustryLatest Trends Payments Industry
Latest Trends Payments Industry
 
Making Blockchain Real for Business Explained - ibm
Making Blockchain Real for Business Explained - ibmMaking Blockchain Real for Business Explained - ibm
Making Blockchain Real for Business Explained - ibm
 
Blockchain explained-v2.09
Blockchain explained-v2.09Blockchain explained-v2.09
Blockchain explained-v2.09
 
Blockchain-Explained-v2.09.pdf
Blockchain-Explained-v2.09.pdfBlockchain-Explained-v2.09.pdf
Blockchain-Explained-v2.09.pdf
 
Grow VC Group presentation at Crypto Funding Summit in Los Angeles
Grow VC Group presentation at Crypto Funding Summit in Los AngelesGrow VC Group presentation at Crypto Funding Summit in Los Angeles
Grow VC Group presentation at Crypto Funding Summit in Los Angeles
 
Open Banking beyond PSD2 in the EU
Open Banking beyond PSD2 in the EU Open Banking beyond PSD2 in the EU
Open Banking beyond PSD2 in the EU
 
Corporate Treasury Bank Tieto public
Corporate Treasury Bank Tieto publicCorporate Treasury Bank Tieto public
Corporate Treasury Bank Tieto public
 
FIDO & PSD2: Solving the Strong Customer Authentication Challenge in Europe
FIDO & PSD2: Solving the Strong Customer Authentication Challenge in EuropeFIDO & PSD2: Solving the Strong Customer Authentication Challenge in Europe
FIDO & PSD2: Solving the Strong Customer Authentication Challenge in Europe
 
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
 
INTERFACE, by apidays - The UK Open Banking Story
INTERFACE, by apidays - The UK Open Banking StoryINTERFACE, by apidays - The UK Open Banking Story
INTERFACE, by apidays - The UK Open Banking Story
 
emtech blockchain.pptx
emtech blockchain.pptxemtech blockchain.pptx
emtech blockchain.pptx
 
Blockchain & Islamic Finance
Blockchain & Islamic FinanceBlockchain & Islamic Finance
Blockchain & Islamic Finance
 
Security and Authentication at a Low Cost
Security and Authentication at a Low CostSecurity and Authentication at a Low Cost
Security and Authentication at a Low Cost
 
DCG Enterprise Blockchain Workshop Oct 2017
DCG Enterprise Blockchain Workshop Oct 2017DCG Enterprise Blockchain Workshop Oct 2017
DCG Enterprise Blockchain Workshop Oct 2017
 
BizDay: Blockchain for Procure to Pay Bank as a Platform Strategy, Digital Ve...
BizDay: Blockchain for Procure to Pay Bank as a Platform Strategy, Digital Ve...BizDay: Blockchain for Procure to Pay Bank as a Platform Strategy, Digital Ve...
BizDay: Blockchain for Procure to Pay Bank as a Platform Strategy, Digital Ve...
 
Grow VC Group: Digital Hybrid Finance
Grow VC Group: Digital Hybrid FinanceGrow VC Group: Digital Hybrid Finance
Grow VC Group: Digital Hybrid Finance
 
ArabNet Beirut - Keynote: Open Banking - To be or not to be? by Open Bank Pr...
ArabNet Beirut - Keynote: Open Banking - To be or not to be? by Open Bank Pr...ArabNet Beirut - Keynote: Open Banking - To be or not to be? by Open Bank Pr...
ArabNet Beirut - Keynote: Open Banking - To be or not to be? by Open Bank Pr...
 
Keynote: Open Banking - To be or not to be? by Open Bank Project by ArabNet B...
Keynote: Open Banking - To be or not to be? by Open Bank Project by ArabNet B...Keynote: Open Banking - To be or not to be? by Open Bank Project by ArabNet B...
Keynote: Open Banking - To be or not to be? by Open Bank Project by ArabNet B...
 

Último

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024The Digital Insurer
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Neo4j
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerThousandEyes
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsJoaquim Jorge
 
Evaluating the top large language models.pdf
Evaluating the top large language models.pdfEvaluating the top large language models.pdf
Evaluating the top large language models.pdfChristopherTHyatt
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdflior mazor
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUK Journal
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Igalia
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slidevu2urc
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking MenDelhi Call girls
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherRemote DBA Services
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfEnterprise Knowledge
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfhans926745
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoffsammart93
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 

Último (20)

Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
Bajaj Allianz Life Insurance Company - Insurer Innovation Award 2024
 
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
Workshop - Best of Both Worlds_ Combine KG and Vector search for enhanced R...
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected WorkerHow to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
Artificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and MythsArtificial Intelligence: Facts and Myths
Artificial Intelligence: Facts and Myths
 
Evaluating the top large language models.pdf
Evaluating the top large language models.pdfEvaluating the top large language models.pdf
Evaluating the top large language models.pdf
 
GenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdfGenAI Risks & Security Meetup 01052024.pdf
GenAI Risks & Security Meetup 01052024.pdf
 
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdfUnderstanding Discord NSFW Servers A Guide for Responsible Users.pdf
Understanding Discord NSFW Servers A Guide for Responsible Users.pdf
 
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
 
Histor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slideHistor y of HAM Radio presentation slide
Histor y of HAM Radio presentation slide
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdfThe Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
The Role of Taxonomy and Ontology in Semantic Layers - Heather Hedden.pdf
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Tech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdfTech Trends Report 2024 Future Today Institute.pdf
Tech Trends Report 2024 Future Today Institute.pdf
 
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot TakeoffStrategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
Strategize a Smooth Tenant-to-tenant Migration and Copilot Takeoff
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 

Identiverse 2019 - Mark Perry - Open Banking Around The World

  • 1. ® OPEN BANKING AROUND THE WORLD WHERE ARE WE AND WHAT HAVE WE LEARNED? MARK PERRY APAC CTO, PING IDENTITY markperry@pingidentity.com markperryau
  • 3. ® Open Banking Summary • Open Standards, not Open Access. Participants are certified. • Some jurisdictions focus on government regulation, others on industry cooperation • Two categories of content APIs • Access to consumer banking transactions (used by data aggregators) • Payments (used by third party payment initiators) • Three components of Open Banking standards • Content APIs • Security APIs • User Experience (authentication, consent, etc.) • Based on OAuth2, some use FAPI (OpenID Connect) • Where standards are nascent, divergence is greatest • e.g. end user consent
  • 6. ® UK — Now at Version 3 • Access to transaction data (one account type initially) • Initiate payments • Central bank-run body (OBIE) certifies participants, runs central directory • Based on FAPI with Consent Object • eIDAS • Learnings • User Experience is key. No standard authentication flow. • Banks found it difficult to be compliant on Day 1 • Difficult for Fintechs due to bank outages, API errors, …
  • 8. ® AU — Consumer Data Right • Banking is the first vertical, but Energy and Telco efforts started • Transaction Data only (wide range of account types) • Payments in the future. • Government-led effort, 3 government bodies • Department of Treasury — legislation • Australian Competition and Consumer Commission — Framework, rules • Data61 — standards • Legislation delayed, standards incomplete, slow to begin central directory • Production date delayed until February 2020 for Big 4 banks
  • 10. ® NZ — Co-operation, Payments First • Industry-led effort • Two largest banks and two Fintechs • Focused on payments only • Aim to reduce credit card transaction fees to zero • Based on OAuth2 • Now starting on transaction data • Moving to FAPI
  • 12. ® EU — Strong regulation, diverse outcomes • Initial standard was not definitive enough • Bank implementations are different and interoperability is complex • Berlin Group was formed to define common standards • “Flexible framework” • Screen-scraping is not allowed, but… • Banks must provide access very similar to screen-scraping • TPPs using this interface must digitally sign the messages to identify themselves • TPPs must use APIs if they are available • eIDAS is mandated
  • 14. ® SG — Strong guidelines, voluntary adoption • 2017 release of “API Playbook” as reference guide • No single standard • No mandated timelines for banks. Adoption of OB is voluntary. • Government believes innovation will drive adoption • So far: • Limited to Singapore’s established, traditional banks • Third parties excluded from taking part • No licenses issued to neo or digital-only banks • Banks are using OAuth2
  • 16. ® JP — Government-led, Consensus- driven • Regulator leads, industry follows, consensus is key. • Currently 12 major providers of core/internet banking systems • Everyone’s a bit different • Each have layered on an “open banking” API of their own • Different OAuth2 scopes • Security is varied: API based security, IPSec, fintechs whitelisted at banks • Some use OAuth2, some OIDC • Don’t need same visibility of consent on both sides • Low number of APIs at this time, take up has been reasonable • Banks using third party ID to correlate identities across silos
  • 18. ® HK — High level details at this time • Government mandated • Starting with publicly available product data • Interest rates • Fees • ATM locations • Access to transaction data and payment initiation in the future • Based on OAuth2 — although details are very high level • Likely to be similar outcomes to Singapore at this stage
  • 20. ® US — Separate banks building APIs, FDX industry body created • Intuit’s Mint uses OAuth tokens to connect to Chase and Bank of America APIs, instead of screenscraping • In October 2018, Financial Data Exchange (FDX) was launched • Non-profit organisation made up of banks and fintechs • Introduced the Durable Data API, now called FDX API • Uses OAuth 2 • No certification program as yet • Working with FAPI WG
  • 21. ® Others… Open Banking World Tour… coming soon to a country near you!
  • 22. ® Other Countries’ Open Banking Efforts
  • 23. ® Finally… Open Banking is Here to Stay! • Identity Security Professionals need to lead • Get involved in your local OB standards process • Security is key… don’t let other IT professionals discount it! • Build on the open standards that are proven and tested • Strong focus on UX and consent needed, otherwise end users will drop off • There’s a lot at stake for the industry: banks, fintechs and most importantly — consumers
  • 24. ®