The OpenID Foundation recently hosted a series of Financial-grade API (FAPI) outreach workshops in support of Open Banking Brazil. The Foundation partnered with new member, Mirow & Co., in developing and delivering these workshops to educate the Brazilian market on the FAPI security profile and the value of FAPI conformance and certification. Mirow & Co is representing the group of Brazilian banking associations responsible for managing the open banking system’s infrastructure while the associations work to formalize a legal entity and governance structure for an open banking association. Workshop objectives:
- Update participants on the latest developments of the OIDF Financial-Grade API (FAPI) security profile and in the Brazilian requirements
- Demonstrate the FAPI conformance test suite and the benefits of FAPI certification;
- Provide participants support and guidance in utilizing the FAPI conformance suite and FAPI certification
- Encourage FAPI conformance and FAPI certification in the Brazilian ecosystem
- Help expand Brazil's open banking ecosystem while increasing security and benefits for banks, fintechs and end customers
Open Banking Brazil Financial-grade API (FAPI) Overview Workshop
The first workshop was held on May 17, 2021 and was an overview session which consisted of an introduction to the OpenID Foundation, OpenID standards including FAPI and the OpenID certification program.
AGENDA | PRESENTER | PRESENTATION |
Welcome & Introduction | Don Thibeau (OIDF Non Executive Director) Raoni Morais (Mirow & Co.) | |
Introduction to Brazil’s Open Banking Stack & the Security Work Group | Alexandre Siqueira (Open Banking Brazil Security WG) | |
Introduction to OpenID Foundation and OpenID Specifications Overview of the FAPI Profiles Including Enhanced Security in New Versions | Ralph Bragg (OIDF & Raidiam) | View Presentation |
How the OpenID Certification Program Attempts to Ensure Both Security and Interoperability: Overview of the OpenID Conformance Test Suite | Joseph Heenan (OIDF & Authlete) | View Presentation |
Demonstration of the OpenID Conformance Test Suite – FAPI Conformance | Joseph Heenan (OIDF & Authlete) | |
Q&A Session on OIDF & Brazil’s Specifications & Conformance Tools | (OIDF) (Mirow/Security WG) |
Open Banking Brazil Financial-grade API (FAPI) Technical Workshop
The second workshop was held on May 24, 2021 which was a deeper technical dive. This workshop provided comprehensive technical overview of FAPI including the FAPI 2.0 roadmap and an overview of JARM. This was followed by detailed demonstration of the FAPI conformance test suite including a live demonstration of a FAPI deployment being tested through being submitted for FAPI certification. The recording of this workshop can be accessed through this link: https://www.youtube.com/watch?v=pn51tKgLIoQ
AGENDA | PRESENTER | PRESENTATION |
Welcome & Introduction | Don Thibeau (OIDF Non Executive Director) Alexandre Siqueira (Open Banking Brazil Security WG) | |
Comprehensive Overview FAPI and FAPI 2.0 Including Enhanced Security in New Versions | Dr. Torsten Lodderstedt (OIDF & CTO of yes.com) | View Presentation |
Detailed Demonstration of FAPI Conformance Test Suite and Certification Request of a FAPI Implementation | Joseph Heenan (OIDF & Authlete) | |
Q&A Session on OIDF & Brazil’s Specifications & Conformance Tools | (OIDF) (Mirow/Security WG) |
Open Banking Brazil -- Demonstration of FAPI Conformance Tests for Brazil for Phase 2 Institutions
A third workshop was help on June 22, 2021 which provided Phase 2 institutions a comprehensive demonstration of the FAPI conformance tests for Brazil. This included a session on how to successfully submit a FAPI certification requests as well as a long Q&A session to allow Phase 2 institutions to ask OIDF certification experts questions prior to the Phase 2 certification deadline of July 15, 2021. The recording of this workshop can be accessed through this link: https://www.youtube.com/watch?v=zW14qlYg5Ts&feature=youtu.be&ab_channel=OpenBankingBrasil