Wiki
Clone wikifapi / FAPI_Meeting_Notes_2020-02-12_Atlantic
FAPI WG Meeting Notes (2020-02-12)
Date & Time: 2020-02-12 14:00 UTC
Location: GoToMeeting https://global.gotomeeting.com/join/321819862
Agenda
The meeting was called to order at 14:__ UTC.
1. Roll Call
1.1. Attending:
- Nat
- Torsten
- Daniel
- Brian
- Joseph
- Stuart
- Steinar
1.2. Regrets:
- Ralph
- Dave
2. Adoption of Agenda (nat)
Adopted as is.
3. Agenda for the F2F on the Feb. 17 (nat)
- FAPI Evolution (Torsten)
- Grant request/consent API (Torsten/Daniel/Joseph)
- Refactoring of the specs taking the security assumptions in mind.
- Issues and Pull requests.
Meeting starts at 11:00 GMT. Remote participation is available.
Ask Don if we can use the room until 5 PM.
4. Presentation for the SWIFT Conference on the 18th (torsten)
OIDF sales pitch with an emphasis on FAPI (API Security) and eKYC.
Use https://docs.google.com/presentation/d/171gOhCdxp1jZBo9P16gFLXOyIGILaPEGs6L7sDctHhg/edit?usp=sharing as the base and add a few slides for Swift.
4.1. Swift Identity APIs
Benefits With 3SKey, SWIFT shoulders your burden to build, maintain and update a technical infrastructure. 3SKey provides a common solution for strong authentication and digital identity, which can be used on any electronic banking channel, including offline applications, web-banking, local and proprietary networks, and SWIFT. 3SKey uses industry standards and provides toolkits and APIs for easy and rapid integration in applications while ensuring maximum security. https://www.swift.com/your-needs/corporates/3skey/benefits 3SKey for Banks factsheet .pdf RESOURCE Trusted and cost-effective solution for strong authentication and digital identity. https://www.swift.com/sites/default/files/resources/swift_needs_factsheet_3skeyforbanks.pdf
5. Issues
5.1. issue #278: duplicate kids in the authorization server's jwks (Joseph)
- Document the key selection algorithm when a duplicated kid is present.
- FAPI certification should give a “pass” to duplicated kids.
Updated