Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 46 Next »

OB Standards

This Section applies to ASPSPs that have impletemented OB Standards


Have you Implemented OB Standards?
  • Yes
  • No

Open Data - Which version have you Implemented?
  • None
  • V2.2
  • V2.3
  • V2.4

Read/Write API Specification Implemented or planning to implement

(Lowest version = Current, Highest version = Planned)

  • V3.0
  • V3.1
  • V3.1.1
  • V3.1.2
  • V3.1.3
  • V3.1.4
  • V3.1.5
  • V3.1.6
  • V3.1.7
  • V3.1.8

Read/Write API - Which date are you planning to implement your latest version?

Dynamic Client Registration - Which version have you Implemented or planning to implement?

(Lowest version = Current, Highest version = Planned)

  • None
  • V3.1
  • V3.2
  • V3.3

DCR - Which date are you planning to implement your latest version?

Have you implemented Trusted beneficiaries, if not date planned to Implement?

  • Already Implemented
  • Planning to implement
  • Not planning to implement 

Have you implemented Reverse Payments, if not date planned to Implement?

  • Already Implemented
  • Planning to implement
  • Not planning to implement 

PISP - Single Payment Limit£
PISP - Daily Payment Limit£
How many months of transaction do you provide?


Security Profile


Which Security profile have you Implemented or planning to implement?

(Lowest version = Current, Highest version = Planned)

  • OB Security Profile (Legacy)
  • FAPI
  • Other (Please define) 

Security Profile - Next Planned Version Implementation Date 
CIBA Profile - Implemented or planning to implement

(Lowest version = Current, Highest version = Planned)

  • None
  • CIBA
  • CIBA FAPI Profile

CIBA Profile - Next Planned Version Implementation Date

Security Profile Certification date?
 

Token Endpoint Authentication Methods Supported
  • client_secret_post
  • client_secret_basic
  • client_secret_jwt
  • tls_client_auth
  • Private_key_jwt

Planned date to Cease support for client id and client secret token endpoint authentication

N/A



Post Brexit Certificate Implementation
POST-BREXIT TRANSITION - Certificates Accepted (1st Jan 2021 - 30th Jun 2021)
  • eIDAS QWAC
  • eIDAS QSealC
  • OB legacy (obtransport, obsigning)
  • OBWAC
  • OBSeal
  • Other (Please define) 

POST-BREXIT POST TRANSITION - Certificates Accepted (from 1st Jul 2021)
  • eIDAS QWAC
  • eIDAS QSealC
  • OB legacy (obtransport, obsigning)
  • OBWAC
  • OBSeal
  • Other (Please define) 
The capability to accept eIDAS certificates is under review and may come into scope at a later date.
Planned Implementation Date to Satisfy FCA's Post Transition

TBC

Scoping and planning in progress
TPP PSU Migration Outcomes Supported (see eIDAS Migration Playbook)

TBC

Scoping and planning in progress
POST-BREXIT Certificate Implementation Status (updated by OBIE IES team)

Planned


Customer Journey

What is your approach to Implementing OBIE Customer Experience Guidelines (CEG)?

(tick all that apply)

  • Already Implemented
  • Planning to implement or upgrade
  • Not planning to implement CEG

Which version have you implemented or planning to implement?

(Lowest version = Current, Highest version = Planned)

  • V3.1.2
  • V3.1.3
  • V3.1.4
  • V3.1.5
  • V3.1.6
  • V3.1.7
  • V3.1.8

Which date are you planning to implement your latest CEG version?

Redirection Model
  • App to App redirection
  • Decoupled authentication
  • Embedded Flow
  • Bespoke User Journeys

Options on 90 day re-authentication?

Re-authentication triggered as per the Customer experience guidelines
PSD2
Which Directory are you using as your Trust Framework?Open Banking
Are you caching the Directory?No
Transaction IDs SupportedOption 1Unique identifier for the transaction used within HL assigned to every transaction

Are you enrolled to Dispute Management System?

  • Yes
  • No
Being adopted

Are you Seeking Fallback Exemption?

  • Yes
  • No


Article 10 - Maximum time period after authentication90 days
Article 10 - Endpoints exempt of SCA

Accounts, Balances, Transactions,  Products


Major Milestones

Brand(s)

ASPSP Dev Portal and Contact Details

Location of Well Known Endpoints

https://matls.rs.aspsp.api-hls.hl.co.uk/auth/oauth2/tpp/.well-known/openid-configuration

Modified Customer Interface URL (if applicable)



Dev Portal URLhttps://www.hl.co.uk/about-us/developer-tools
Test Facility URL

ASPSP Support Desk Email or Phone Number

openbanking@hl.co.uk
Key Implementations

High Cost Credit

Hargreaves - HCC.xlsx

  • No labels