Versions Compared

Version Old Version 43 New Version 44
Changes made by

Adam Pretlove (Unlicensed)

Alessandro Greco

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.


Panel
borderStyledashed
titleOB Standards


Page Properties
idStandards-Production


Implement Open Data v2.2September 2019
Implement Read/Write API Specification v3.1September 2019
Implement Customer Experience Guidelines v1.1

September 2019


Implement App-to-App RedirectionN/AN/A, as the mobile app is currently not in scope.
Implement OB Security Profile Implementer's Draft v1.1.2September 2019
Implement FAPI Profile Implementers Draft 2September 2019
Implement CIBA Profile Implementers Draft 1N/A
Implement Dynamic Client Registration v1.1 
Implement Dynamic Client Registration v3.1 
Decommission Read/Write API Specification v1.x/2.x
Decommission OB Security Profile Implementer's Draft v1.x



...

Panel
borderStyledashed
titleImplementation


Page Properties
idTC-IMP


Directory?

Open Banking

Location of Well Known Endpoints?

OB Technical Directory

The Well Known Endpoint for our Sandbox is: https://sandbox.caterallen.co.uk/.well-known/openid-configuration 

It is also indicated in the support section together with other relevant info: https://sandbox.caterallen.co.uk/store/site/pages/faq.jag 


The Production Well Known Endpoint is:

https://developer.caterallen.co.uk/.well-known/openid-configuration

It is also indicated in the support section together with other relevant info: 

https://developer.caterallen.co.uk/store/site/pages/faq.jag 


API Standard Implemented?

Open Banking v3.1

Name of Account Holder Implementation Date?

TBC (see notes)This optional field has not been implemented yet but is planned for some time in the future.
Date of Current eIDAS Implementation?14/09/19

Current Certificates used for Identification?

MTLS available. eIDAS QWAC/QSEAL.

EIDAS certificates will be validated using the OBIE directory



Current Certificates used for Transport?

OB Transport

OBWAC

QWAC

EIDAS certificates will be validated using the OBIE directory
Current Certificates used for Signing?

OB Signing

OBSEAL

EIDAS certificates will be validated using the OBIE directory
Date of Future eIDAS Implementation?No future update currently planned.

Future Certificates used for Identification?


Future Certificates used for Transport?




Future Certificates used for Signing?


Major Milestones

Version 3.1 was implemented in June 2019 and Security Conformance SUITE certification was achieved on August 2019(Inc Other Products, API Updates, API Deprecations, etc)
Brand(s)


Security Profile?FAPI Open ID

Security Profile Certification?Yes

CIBA

No

Using Open Banking as your eIDAS Trust Framework?Yes

Are you caching the Directory?No

Transaction IDsWe are supporting: ASPSPs provide a Unique, Immutable TransactionID from their YesThe TransactionID is retrieved from our core system




Panel
borderStyledashed
titleCustomer Journey


Page Properties
idTC-CJ


Implementing Customer Experience Guidelines?

Yes

Implementing Bespoke User Journeys?

Yes (see notes)Our payment journeys currently follow the exact journey as customer would get in their online banking.  The Customer Experience Guidelines says they payment journeys should be 2 step.  We will not be introducing the 2 step journeys until October 2019.

Implementing App to App?

N/A
App to App Implementation Date?N/A

Options on 90 day re-authentication?

90 Days

A TPP can re-authentication any time up until the expiry date.  The customer will be made to re-authenticate every 90 days otherwise access to the data will be removed.

Support Embedded Flow?

No



...