FAPI WG Meeting Notes (2020-02-17)
Date & Time: 2020-02-17 11:00 UTC
Location: GoToMeeting https://global.gotomeeting.com/join/321819862
- 1. Roll Call & Intro (Name, Affiliation, Goal)
- 2. Adoption of Agenda (nat)
- 3. FAPI Evolution (Torsten)
- 4. Grant request/consent API (Torsten/Daniel/Joseph)
- 5. Refactoring of the specs taking the security assumptions in mind.
- 6. Issues and Pull requests.
- 7. Presentation for the SWIFT Conference on the 18th (torsten)
- 8. Issues
- 9. AOB
The meeting was called to order at 14:__ UTC.
Gavin Littlejon, FDAA, Customer data rights and open data implementation Torste, yes.com, Rob Otto, CTO Ping, Mark Hain, , Steiner, Norwegean Govt ehelth, Daniel Fett, Yes.com, Security aspect of ekyc ..., SWIFT, kunt, SWIFT, connecting dots et W3C Keltes, SWIFT, ISO 20020 APIs. aaa, SWIFT, business standard of msgs. Legrand, verifon and open banking etc., Matt pain, akamai, observatin ,AKAMAI, security and scalabiity Chris Michael, obie, Mayur, Akamai-Janrain, Ralph Bragg,Radium, trustframework Xavier, SWIFT, Joseph Heenan, Authlete Taka, Authlete, Barry, Radium, Vladimier Zhudinov, new directions Torsten Nat Sakimura Don Thibeau Brian Campbell, ping, Bjorn Hjelm, Verizon, Dima, Stuart Low, Biza, Consent models. Nick, Stich from South Africa. Marcos Sanz,
Nick Schwartz, Sanandor Manuela, ditto, digital trust Mike verely,
Adopted as is.
Torsten provided the presentation: https://docs.google.com/presentation/d/1LyebJ8FhC1sIM9F5e9TNHRPDOYuXiilHt4wQBkvRvtc/edit#slide=id.p
- Rob: User interface issues. Many wants ROPC to keep control of the UI.
- Ralph: consent means different so need clarification.
Fine-grained authorization request
Consent is application-specific. More granular and complex as time goes by.
Meeting starts at 11:00 GMT. Remote participation is available.
Ask Don if we can use the room until 5 PM.
OIDF sales pitch with an emphasis on FAPI (API Security) and eKYC.
Use https://docs.google.com/presentation/d/171gOhCdxp1jZBo9P16gFLXOyIGILaPEGs6L7sDctHhg/edit?usp=sharing as the base and add a few slides for Swift.
Benefits With 3SKey, SWIFT shoulders your burden to build, maintain and update a technical infrastructure. 3SKey provides a common solution for strong authentication and digital identity, which can be used on any electronic banking channel, including offline applications, web-banking, local and proprietary networks, and SWIFT. 3SKey uses industry standards and provides toolkits and APIs for easy and rapid integration in applications while ensuring maximum security. https://www.swift.com/your-needs/corporates/3skey/benefits 3SKey for Banks factsheet .pdf RESOURCE Trusted and cost-effective solution for strong authentication and digital identity. https://www.swift.com/sites/default/files/resources/swift_needs_factsheet_3skeyforbanks.pdf
The meeting was adjourned at 14:__ UTC.