Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »

OB Standards


Implement Open Data v2.2

Implement Read/Write API Specification v3.1



Implement Customer Experience Guidelines v1.1

Implement App-to-App Redirection

Implement OB Security Profile Implementer's Draft v1.1.2




Implement FAPI Profile Implementers Draft 2

Implement CIBA Profile Implementers Draft 1

Implement Dynamic Client Registration v1.1

Implement Dynamic Client Registration v3.1

Decommission Read/Write API Specification v1.x/2.xN/A
Decommission OB Security Profile Implementer's Draft v1.xN/A
Article 10 SCA Exemption (for 90 days)


Method of Identification


Commence support for eIDAS QWAC certificates

Commence support for eIDAS QSEAL certificates
 

Commence support for OBIE QWAC-like certificates



Commence support for OBIE QSEAL-like certificates

Cease support for OBIE non eIDAS-like certificates for transport

Cease support for OBIE non eIDAS-like certificates for signing

Support for MTLS token endpoint authentication

Support for private_key_jwt token endpoint authentication



Cease support for client id and client secret token endpoint authentication

Implementation

Directory?

Open Banking

Location of Well Known Endpoints?

Open Banking technical directory and Cynergy Bank Developer Portalhttps://openbanking.cynergybank.co.uk/

API Standard Implemented?

Open Banking v3.1.1 &
Open Banking v3.0

Name of Account Holder Implementation Date?

N/A

Supported identification method?

eIDAS, OBWAC/OBSEAL


Major Milestones

Testing interface Open Banking API standard v3.0 13/03/2019
Wide usage interface Open Banking API Standard v3.0 13/03/2019
Stress testing (Open Banking API standard v3.0) 30/06/2019
Open Banking API standard v3.1.1 13/09/2019
Infrastructure upgrades 05/08/2019
eIDAS 13/09/2019


FAPI Compliant?

Yes


CIBA

N/AThe Bank does not offer a mobile banking app
Using Open Banking as your eIDAS Trust Framework?No
Are you caching the Directory?No
Transaction IDsTBC
Customer Journey

Implementing Customer Experience Guidelines?

Yes


Implementing Bespoke User Journeys?

No

Implementing App to App?

N/A
App to App Implementation Date?N/A 

Options on 90 day re-authentication?

90 day consent model as per SCA-RTS

Support Embedded Flow?

N/A
PSD2

Dispute Management System?

No

Seeking Fallback Exemption?

Yes

Adjusted or Fallback Interface?

No
Adjusted or Fallback URL?N/A
Contact Email or Phone Number?

Test Facility Implementation Date?

  
Production Interface Implementation Date? 

Authentication Method - Open Banking Channel (Browser)?

AISP: Username + Password (as knowledge factors) + hard token/soft token (as possession factors)/One time password (to be deprecated)
PISP: Username + Password (as knowledge factors) + hard token/soft token (as possession factors)/One time password (to be deprecated)

Authentication Method - Open Banking Channel (APP)?

N/AThe Bank does not offer a mobile banking app

Authentication Method - Private Channel (Browser)?

AISP: Username + Password (as knowledge factors) + hard token/soft token (as possession factors)/One time password (to be deprecated)
PISP: Username + Password (as knowledge factors) + hard token/soft token (as possession factors)/One time password (to be deprecated)

Authentication Method - Private Channel (APP)?

N/AThe Bank does not offer a mobile banking app

Authentication Method Implementation Date (Open Banking Channel)?

 

Authentication Method Implementation Date (Private Channel)?

 

SCA Implementation Date?

 

SCA Scope? (will it inhibit non PSD2 accounts)

Applicable for all payment account holders with Customer Channel (Online Banking) access


  • No labels