DSB Item - FAPI 2.0 + Advanced Security Migration Scoping #77
Labels
action initiation
This issue pertains to action initiation across one or more sectors
maturity: ready for work
Indicates the problem statement is well defined and work on a proposal can begin
sector: all
The item is cross-sector in nature and impacts the CDR regime more broadly
Problem Statement
By April 2023, the data standards will be aligned to FAPI 1.0 Final inclusive of Pushed Authorization Requests (PAR), JWT Secured Authorization Response Mode for OAuth 2.0 (JARM) and adoption of the Authorization Code Flow.
To support enhanced authentication standards and richer authorisation capability, the data standards are targetting uplift to the FAPI 2.0 profile. This consultation has previously been flagged via Decision Proposal 210 - Transition to FAPI 2.0 Profile. This consultation will look at the sequencing of FAPI 2.0 profile adoption, requirements and industry readiness.
Adoption of many FAPI 2.0 advanced components and/or adjacent standards such as CIBA, eKYC and SET will invaluable to build secure future-focused foundations for new sectors and action initiation.
The text was updated successfully, but these errors were encountered: