SlideShare a Scribd company logo

Building a Fool Proof Security Strategy for PSD2 Compliance

WSO2
WSO2

PSD2 is centered around exposing sensitive customer data. This means the security measures you take to expose this data cannot have any loopholes. Just like your API management strategy, your security strategy is critical to implementing successful compliance. WSO2 Open Banking comes with inbuilt capabilities to support Strong Customer Authentication (SCA) and access management. Built around the key requirements of the Regulatory Technical Standards (RTS) it provides the end to end security requirements for compliance, while ensuring that customer experience is not compromised. This webinar will cover The key requirements of the RTS for PSD2 Compliance - Strong Customer Authentication (SCA), federated authentication, consent management and more The capabilities of WSO2 Open Banking to meet these security requirements How to ensure a secure yet frictionless customer experience A demonstration of WSO2 Open Banking

Technology
1 of 25
Download to read offline
Building a Fool Proof Security Strategy for PSD2 Compliance Pushpalanka Jayawardhana Financial Solutions - WSO2
Line Up • PSD2 • PSD2 RTS on SCA and Secured Communication • Compliance Requirements – API Security • Specifications to meet recommandations Eg. OpenBanking Org UK specification/ Berlin Group/ STET/ FAPI - OIDC Hybrid Flow - Private Key JWT authentication – Strong Customer Authentication – Consent Management – Fraud Detection • Implicit Requirements – Conditional Authentication – Adaptive Authentication – Fine Grained Authorization
PSD2 Mandates Banks to - securely expose - customer Account and Payment data - with customer consent - to regulated third parties - via APIs
With the Objective of ● Providing a frictionless user experience ● Making electronic payments more secure ● Establish a platform for effective and integrated payment services ● Providing openness required for innovations in the domain, with enhanced competition.
Timeline
PSD2 RTS on SCA and Secured Communication ● Two factor Authentication ● Strong authentication is required with at least two factors from below, i. Knowledge factors (username and password, pin) ii. Possession factors (mobile, security device, token generator) iii. Inherence factors (fingerprint, voice, iris pattern) ● Open secured APIs for payment initiation and account information ● Access delegation with explicit user consent ● Secured Communication ● Fraud detection and audit logs
More Requirements ● Conditional Authentication ● Adaptive Authentication ● Fine grained authorization ● Federated Authentication ● Continued security procedures
WSO2 Open Banking
Strong Customer Authentication (SCA) ● Correctly identifying and authenticating the end user is a necessity. ● More secure than just having basic authentication. ● WSO2 Open Banking Solution provides, ○ Multi Factor Authentication (MFA ) support with SMS/OTP, FIDO, DUO, MePin etc. ■ WSO2 connector store - https://store.wso2.com/store/assets/isconnector/list ○ Extensible to support any other mechanism preferred by banks to authenticate users. Knowledge Ownership Inherence Password, PIN, ID number Mobile device, token or Smart card Fingerprint, face or voice recognition
API Security ● Exposing confidential internal data to external parties ● Inbuilt OAuth2 security layer provided by IAM capabilities ensures secure API invocations through WSO2 Open Banking Solution. ● Supports common grant types such as Client Credentials, Authorization Code, Password, Implicit, SAML Bearer, JWT assertion bearer and Integrated Windows Authentication (IWA) allowing APIs to be used by different types of Applications. ● Applicable entitlement management and enforcement layer Our recent webinar on API Mgt : https://wso2.com/library/webinars/2017/11/getting-your-api-management-strategy-on-point-for-psd2-compliance/
Standards JSON REST OAuth OpenID Connect Sources - ODI OBWG : Open Banking Standard 2016 & Ⓒ By 2016 Nomura Research Institute https://www.slideshare.net/nat_sakimura/financial-grade-oauth-openid-connect
Specifics for OIDC • OIDC Hybrid flow • Request object • s_hash • Private_key_jwt client authentication ➢ Less round trips than authorization_code ➢ Avoid multiple mix up attacks Eg. IDP mixup ➢ Protection from ‘state’ parameter injection ➢ Strengthen source authentication
Consent Management ● Comprehensive support to manage user consent ○ For payment transactions or account information aggregations ○ Revoking consents ○ Operations from custom care officers ● GDPR Implications (May 2018)
System is breach proof? Data Breaches Frequency 998 Incidents, 471 with confirmed data disclosure Top 3 patterns Denial of Service, Web Application Attacks and Payment Card Skimming represent 88% of all security incidents within Financial Services Threat actors 94% External, 6% Internal, <1% Partner (all incidents) Actor motives 96% Financial, 1% Espionage (all incidents) Data compromised 71% Credentials, 12% Payment, 9% Personal - DoS attacks were the most common incident type. Summary Confirmed data breaches were often associated with banking Trojans stealing and reusing customer passwords, along with ATM skimming operations. Source : Verizon 2017 Data Breach Investigations Report - 10th Edition
Fraud Detection • Allows Organizations to – Detect known anomalies via contextually evolving rules – Detect unknown anomalies via Machine Learning – Detect Anomalous event sequences via Markov Modelling – Reduce False Positives via Fraud Scoring – Further investigate and identify complex relationships using Interactive Analytics Quantity Value Anomaly
Conditional Authentication
Adaptive Authentication ● Adaptive Authentication allows the solution to adjust the authentication strength ● This is based on the feedback from analytics engine. ● Maked the authentication stronger or relax it based on the context at hand. ● Provides better user experience, enforcing strong authentication only when it’s necessary. Transaction amount > 10000 EUR Transaction amount < 10000 EUR Basic Authentication SMS OTP Authentication Basic Authentication Authenticated Authenticated
Fine Grained Authorization ● In the Authentication Flow ○ WSO2 IS can support fine grained authorization with XACML 2.0/3.0 ○ User authentication decision can be affected by other factors ■ Eg. In a specific time interval, users cannot login ● In the API calls ○ WSO2 AM can intercept the flows to apply fine grained authorization ○ Consume authorization decisions from IS, acting as a PEP ■ Eg. API response can be further customized according to user attributes. ● If the user belongs to ‘Platinum’ tier let them take online loans below an amount x.
Continued Assurance Process • Proactive strategy (Continuous Integration) – WSO2 Security Guidelines based on OWSAP – Commercial static code and dynamic security scan tools – Third party dependency scans • Reactive strategy – Any vulnerabilities reported are addressed with the highest priority – Issue fixes to customers before public disclosure Resources : https://wso2.com/technical-reports/wso2-secure-engineering-guidelines https://wso2.com/security
Creates an “Open Banking” platform to be PSD2 compliant and as a result become a Digitally Transformed Bank. API Specification ○ API Definitions ○ WSO2 Open Banking Customer TPP (AISP/PISP) FinTech Merchants Core Banking Internal Payment Services Bank Internal Network ISO 8583 (TCP/IP) HTTP HTTPS Other Banks HTTPS
WSO2 Open Banking ● API Specification ● API Security + SCA ● API Analytics ● API Monetization PSD2 Compliance ● API Integration ● Fraud Detection ● API Analytics ● Dashboards TPP Provider ● Web/Mobile App Suite ● Insight Sales ● Required Integration Digital Transformation
Demo https://openbanking.wso2.com/
Resources More Information http://wso2.com/solutions/financial/open-banking/ Try out WSO2 Open Banking https://openbanking.wso2.com On Demand Webinars https://wso2.com/library/webinars/2017/11/getting-your-api-management-strategy-on-point-for-psd 2-compliance/ http://wso2.com/library/webinars/2017/08/wso2-open-banking-digital-transformation-through-psd2/ Open Banking White Paper http://wso2.com/whitepapers/digital-transformation-through-psd2-and-open-banking/
THANK YOU wso2.com

Recommended

Secure and Accelerated PSD2 Compliance with WSO2 Open Banking - A Technical D...
Secure and Accelerated PSD2 Compliance with WSO2 Open Banking - A Technical D...Secure and Accelerated PSD2 Compliance with WSO2 Open Banking - A Technical D...
Secure and Accelerated PSD2 Compliance with WSO2 Open Banking - A Technical D...WSO2
 
Identity mediation for enterprise identity bus
Identity mediation for enterprise identity busIdentity mediation for enterprise identity bus
Identity mediation for enterprise identity busPushpalanka Jayawardhana
 
Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2Pushpalanka Jayawardhana
 
Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr... Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr...WSO2
 
[APIdays Singapore 2019] Implementing a Successful Open Banking Architecture
[APIdays Singapore 2019] Implementing a Successful Open Banking Architecture[APIdays Singapore 2019] Implementing a Successful Open Banking Architecture
[APIdays Singapore 2019] Implementing a Successful Open Banking ArchitectureWSO2
 
PISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UKPISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UKWSO2
 
Identiverse: PSD2, Open Banking, and Technical Interoperability
Identiverse: PSD2, Open Banking, and Technical InteroperabilityIdentiverse: PSD2, Open Banking, and Technical Interoperability
Identiverse: PSD2, Open Banking, and Technical InteroperabilityTorsten Lodderstedt
 
Banking is Now More Open: Open Banking Update
Banking is Now More Open: Open Banking UpdateBanking is Now More Open: Open Banking Update
Banking is Now More Open: Open Banking UpdateMikeLeszcz
 

Recommended

Secure and Accelerated PSD2 Compliance with WSO2 Open Banking - A Technical D...
Secure and Accelerated PSD2 Compliance with WSO2 Open Banking - A Technical D...Secure and Accelerated PSD2 Compliance with WSO2 Open Banking - A Technical D...
Secure and Accelerated PSD2 Compliance with WSO2 Open Banking - A Technical D...WSO2
 
Identity mediation for enterprise identity bus
Identity mediation for enterprise identity busIdentity mediation for enterprise identity bus
Identity mediation for enterprise identity busPushpalanka Jayawardhana
 
Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2Frictionless Adaption of PSD2 with WSO2
Frictionless Adaption of PSD2 with WSO2Pushpalanka Jayawardhana
 
Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr... Winning the battle and the war: API Management for Compliance and Digital Tr...
Winning the battle and the war: API Management for Compliance and Digital Tr...WSO2
 
[APIdays Singapore 2019] Implementing a Successful Open Banking Architecture
[APIdays Singapore 2019] Implementing a Successful Open Banking Architecture[APIdays Singapore 2019] Implementing a Successful Open Banking Architecture
[APIdays Singapore 2019] Implementing a Successful Open Banking ArchitectureWSO2
 
PISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UKPISP Journey Based on Open Banking UK
PISP Journey Based on Open Banking UKWSO2
 
Identiverse: PSD2, Open Banking, and Technical Interoperability
Identiverse: PSD2, Open Banking, and Technical InteroperabilityIdentiverse: PSD2, Open Banking, and Technical Interoperability
Identiverse: PSD2, Open Banking, and Technical InteroperabilityTorsten Lodderstedt
 
Banking is Now More Open: Open Banking Update
Banking is Now More Open: Open Banking UpdateBanking is Now More Open: Open Banking Update
Banking is Now More Open: Open Banking UpdateMikeLeszcz
 
oauth-for-credentials-security-in-rest-api-access
oauth-for-credentials-security-in-rest-api-accessoauth-for-credentials-security-in-rest-api-access
oauth-for-credentials-security-in-rest-api-accessidsecconf
 
PSD2: Implementing APIs that interoperate with ISO 20022
PSD2: Implementing APIs that interoperate with ISO 20022PSD2: Implementing APIs that interoperate with ISO 20022
PSD2: Implementing APIs that interoperate with ISO 20022XMLdation Ltd
 
Big Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas Tomperi
Big Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas TomperiBig Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas Tomperi
Big Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas TomperiDataconomy Media
 
[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...
[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...
[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...WSO2
 
Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...
Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...
Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...WSO2
 
What's New With WSO2 Open Banking
What's New With WSO2 Open BankingWhat's New With WSO2 Open Banking
What's New With WSO2 Open BankingWSO2
 
Trends in Banking APIs
Trends in Banking APIsTrends in Banking APIs
Trends in Banking APIsTatsuo Kudo
 
2007 12 - gsma - pay-buy - business opportunty analysis
2007 12 - gsma - pay-buy - business opportunty analysis2007 12 - gsma - pay-buy - business opportunty analysis
2007 12 - gsma - pay-buy - business opportunty analysisBoni
 
Blockchain
BlockchainBlockchain
BlockchainAnil Chaurasiya
 
PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR
PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPRPSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR
PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPRLatvijas Banka
 
swift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baswift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baFrederik Adriaensen
 
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610 Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610 FinTech Belgium
 
Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610
Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610
Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610FinTech Belgium
 
Vilas Patil
Vilas PatilVilas Patil
Vilas PatilVilas Patil
 
Blockchain for banking
Blockchain for bankingBlockchain for banking
Blockchain for bankingkarim.abdulkarim
 
Microsoft Accelerator event- Maria's Legal presentation
Microsoft Accelerator event- Maria's Legal presentation Microsoft Accelerator event- Maria's Legal presentation
Microsoft Accelerator event- Maria's Legal presentation Hila Bar
 
Blockchain and international trade, trade finance, and supply chain (1)
Blockchain and international trade, trade finance, and supply chain (1)Blockchain and international trade, trade finance, and supply chain (1)
Blockchain and international trade, trade finance, and supply chain (1)Sunny Sian
 
KYC optimization using Block chain Technology
KYC optimization using Block chain TechnologyKYC optimization using Block chain Technology
KYC optimization using Block chain TechnologyShobhita Jain
 
Safex pay avantgarde -presentation
Safex pay avantgarde -presentationSafex pay avantgarde -presentation
Safex pay avantgarde -presentationParvezKhan173
 
Danske Bank
Danske BankDanske Bank
Danske BankOslo Business Region
 
Get Strong Customer Authentication Ready for PSD2
Get Strong Customer Authentication Ready for PSD2Get Strong Customer Authentication Ready for PSD2
Get Strong Customer Authentication Ready for PSD2WSO2
 
Security & Seamless CX in User Authentication: How to Achieve Both?
Security & Seamless CX in User Authentication: How to Achieve Both?Security & Seamless CX in User Authentication: How to Achieve Both?
Security & Seamless CX in User Authentication: How to Achieve Both?Ivona M
 

More Related Content

What's hot

oauth-for-credentials-security-in-rest-api-access
oauth-for-credentials-security-in-rest-api-accessoauth-for-credentials-security-in-rest-api-access
oauth-for-credentials-security-in-rest-api-accessidsecconf
 
PSD2: Implementing APIs that interoperate with ISO 20022
PSD2: Implementing APIs that interoperate with ISO 20022PSD2: Implementing APIs that interoperate with ISO 20022
PSD2: Implementing APIs that interoperate with ISO 20022XMLdation Ltd
 
Big Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas Tomperi
Big Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas TomperiBig Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas Tomperi
Big Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas TomperiDataconomy Media
 
[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...
[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...
[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...WSO2
 
Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...
Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...
Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...WSO2
 
What's New With WSO2 Open Banking
What's New With WSO2 Open BankingWhat's New With WSO2 Open Banking
What's New With WSO2 Open BankingWSO2
 
Trends in Banking APIs
Trends in Banking APIsTrends in Banking APIs
Trends in Banking APIsTatsuo Kudo
 
2007 12 - gsma - pay-buy - business opportunty analysis
2007 12 - gsma - pay-buy - business opportunty analysis2007 12 - gsma - pay-buy - business opportunty analysis
2007 12 - gsma - pay-buy - business opportunty analysisBoni
 
PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR
PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPRPSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR
PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPRLatvijas Banka
 
swift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baswift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baFrederik Adriaensen
 
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610 Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610 FinTech Belgium
 
Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610
Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610
Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610FinTech Belgium
 
Microsoft Accelerator event- Maria's Legal presentation
Microsoft Accelerator event- Maria's Legal presentation Microsoft Accelerator event- Maria's Legal presentation
Microsoft Accelerator event- Maria's Legal presentation Hila Bar
 
Blockchain and international trade, trade finance, and supply chain (1)
Blockchain and international trade, trade finance, and supply chain (1)Blockchain and international trade, trade finance, and supply chain (1)
Blockchain and international trade, trade finance, and supply chain (1)Sunny Sian
 
KYC optimization using Block chain Technology
KYC optimization using Block chain TechnologyKYC optimization using Block chain Technology
KYC optimization using Block chain TechnologyShobhita Jain
 
Safex pay avantgarde -presentation
Safex pay avantgarde -presentationSafex pay avantgarde -presentation
Safex pay avantgarde -presentationParvezKhan173
 

What's hot (20)

oauth-for-credentials-security-in-rest-api-access
oauth-for-credentials-security-in-rest-api-accessoauth-for-credentials-security-in-rest-api-access
oauth-for-credentials-security-in-rest-api-access
 
PSD2: Implementing APIs that interoperate with ISO 20022
PSD2: Implementing APIs that interoperate with ISO 20022PSD2: Implementing APIs that interoperate with ISO 20022
PSD2: Implementing APIs that interoperate with ISO 20022
 
Big Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas Tomperi
Big Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas TomperiBig Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas Tomperi
Big Data Helsinki v 3 | "What you should know about PSD2 APIs?" - Joonas Tomperi
 
[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...
[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...
[WSO2Con EU 2018] Blockchain in the Business API Ecosystem - API Consumption ...
 
Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...
Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...
Agile and Adaptable Technology Platforms - Easing the Insanity of the Post PS...
 
What's New With WSO2 Open Banking
What's New With WSO2 Open BankingWhat's New With WSO2 Open Banking
What's New With WSO2 Open Banking
 
Trends in Banking APIs
Trends in Banking APIsTrends in Banking APIs
Trends in Banking APIs
 
2007 12 - gsma - pay-buy - business opportunty analysis
2007 12 - gsma - pay-buy - business opportunty analysis2007 12 - gsma - pay-buy - business opportunty analysis
2007 12 - gsma - pay-buy - business opportunty analysis
 
Blockchain
BlockchainBlockchain
Blockchain
 
PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR
PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPRPSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR
PSD2 un GDPR savstarpējā ietekme. Intersections of PSD2 and GDPR
 
swift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2baswift_connectivity_factsheet_l2ba
swift_connectivity_factsheet_l2ba
 
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610 Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
Tradetech Hybrid MeetUp_N.Jaure_Onespan_210610
 
Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610
Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610
Tradetech Hybrid MeetUp_P.Mollard_Ibanfirst_210610
 
Vilas Patil
Vilas PatilVilas Patil
Vilas Patil
 
Blockchain for banking
Blockchain for bankingBlockchain for banking
Blockchain for banking
 
Microsoft Accelerator event- Maria's Legal presentation
Microsoft Accelerator event- Maria's Legal presentation Microsoft Accelerator event- Maria's Legal presentation
Microsoft Accelerator event- Maria's Legal presentation
 
Blockchain and international trade, trade finance, and supply chain (1)
Blockchain and international trade, trade finance, and supply chain (1)Blockchain and international trade, trade finance, and supply chain (1)
Blockchain and international trade, trade finance, and supply chain (1)
 
KYC optimization using Block chain Technology
KYC optimization using Block chain TechnologyKYC optimization using Block chain Technology
KYC optimization using Block chain Technology
 
Safex pay avantgarde -presentation
Safex pay avantgarde -presentationSafex pay avantgarde -presentation
Safex pay avantgarde -presentation
 
Danske Bank
Danske BankDanske Bank
Danske Bank
 

Similar to Building a Fool Proof Security Strategy for PSD2 Compliance

Get Strong Customer Authentication Ready for PSD2
Get Strong Customer Authentication Ready for PSD2Get Strong Customer Authentication Ready for PSD2
Get Strong Customer Authentication Ready for PSD2WSO2
 
Security & Seamless CX in User Authentication: How to Achieve Both?
Security & Seamless CX in User Authentication: How to Achieve Both?Security & Seamless CX in User Authentication: How to Achieve Both?
Security & Seamless CX in User Authentication: How to Achieve Both?Ivona M
 
[WSO2Con EU 2018] Kicking Your Enterprise Security Up a Notch With Adaptive A...
[WSO2Con EU 2018] Kicking Your Enterprise Security Up a Notch With Adaptive A...[WSO2Con EU 2018] Kicking Your Enterprise Security Up a Notch With Adaptive A...
[WSO2Con EU 2018] Kicking Your Enterprise Security Up a Notch With Adaptive A...WSO2
 
kicking your enterprise security up a notch with adaptive authentication sa...
kicking your enterprise security up a notch with adaptive authentication sa...kicking your enterprise security up a notch with adaptive authentication sa...
kicking your enterprise security up a notch with adaptive authentication sa...Sagara Gunathunga
 
API Security In Cloud Native Era
API Security In Cloud Native EraAPI Security In Cloud Native Era
API Security In Cloud Native EraWSO2
 
Wso2 italia open break session #3 - Identity Server
Wso2 italia open break session #3 - Identity ServerWso2 italia open break session #3 - Identity Server
Wso2 italia open break session #3 - Identity ServerProfesia Srl, Lynx Group
 
Strong Customer Authentication - All Your Questions Answered
Strong Customer Authentication - All Your Questions AnsweredStrong Customer Authentication - All Your Questions Answered
Strong Customer Authentication - All Your Questions AnsweredWSO2
 
Synergies across APIs and IAM
Synergies across APIs and IAMSynergies across APIs and IAM
Synergies across APIs and IAMSagara Gunathunga
 
Move your customer authentication to the next level!
Move your customer authentication to the next level!Move your customer authentication to the next level!
Move your customer authentication to the next level!Ivona M
 
Microservices security - jpmc tech fest 2018
Microservices security - jpmc tech fest 2018Microservices security - jpmc tech fest 2018
Microservices security - jpmc tech fest 2018MOnCloud
 
[APIdays Melbourne 2019] The Consumer Data Right: Building a Successful Open ...
[APIdays Melbourne 2019] The Consumer Data Right: Building a Successful Open ...[APIdays Melbourne 2019] The Consumer Data Right: Building a Successful Open ...
[APIdays Melbourne 2019] The Consumer Data Right: Building a Successful Open ...WSO2
 
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...IRJET Journal
 
Wso2 italia open break session #4 open banking
Wso2 italia open break session #4 open bankingWso2 italia open break session #4 open banking
Wso2 italia open break session #4 open bankingProfesia Srl, Lynx Group
 
Wso2 italia open break session #4 - OPEN BANKING
Wso2 italia open break session #4 - OPEN BANKINGWso2 italia open break session #4 - OPEN BANKING
Wso2 italia open break session #4 - OPEN BANKINGProfesia Srl, Lynx Group
 
SSO IN/With Drupal and Identitiy Management
SSO IN/With Drupal and Identitiy ManagementSSO IN/With Drupal and Identitiy Management
SSO IN/With Drupal and Identitiy ManagementManish Harsh
 
#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...
#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...
#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...Profesia Srl, Lynx Group
 
E AUTHENICATION SYSTEM USING QR CODE AND OTP
E AUTHENICATION SYSTEM USING QR CODE AND OTPE AUTHENICATION SYSTEM USING QR CODE AND OTP
E AUTHENICATION SYSTEM USING QR CODE AND OTPIRJET Journal
 
How to Build Interoperable Decentralized Identity Systems with OpenID for Ver...
How to Build Interoperable Decentralized Identity Systems with OpenID for Ver...How to Build Interoperable Decentralized Identity Systems with OpenID for Ver...
How to Build Interoperable Decentralized Identity Systems with OpenID for Ver...Torsten Lodderstedt
 
Cartes Asia Dem 2010 V2
Cartes Asia Dem 2010 V2Cartes Asia Dem 2010 V2
Cartes Asia Dem 2010 V2Donald Malloy
 

Similar to Building a Fool Proof Security Strategy for PSD2 Compliance (20)

Get Strong Customer Authentication Ready for PSD2
Get Strong Customer Authentication Ready for PSD2Get Strong Customer Authentication Ready for PSD2
Get Strong Customer Authentication Ready for PSD2
 
Security & Seamless CX in User Authentication: How to Achieve Both?
Security & Seamless CX in User Authentication: How to Achieve Both?Security & Seamless CX in User Authentication: How to Achieve Both?
Security & Seamless CX in User Authentication: How to Achieve Both?
 
[WSO2Con EU 2018] Kicking Your Enterprise Security Up a Notch With Adaptive A...
[WSO2Con EU 2018] Kicking Your Enterprise Security Up a Notch With Adaptive A...[WSO2Con EU 2018] Kicking Your Enterprise Security Up a Notch With Adaptive A...
[WSO2Con EU 2018] Kicking Your Enterprise Security Up a Notch With Adaptive A...
 
kicking your enterprise security up a notch with adaptive authentication sa...
kicking your enterprise security up a notch with adaptive authentication sa...kicking your enterprise security up a notch with adaptive authentication sa...
kicking your enterprise security up a notch with adaptive authentication sa...
 
API Security In Cloud Native Era
API Security In Cloud Native EraAPI Security In Cloud Native Era
API Security In Cloud Native Era
 
Wso2 italia open break session #3 - Identity Server
Wso2 italia open break session #3 - Identity ServerWso2 italia open break session #3 - Identity Server
Wso2 italia open break session #3 - Identity Server
 
Strong Customer Authentication - All Your Questions Answered
Strong Customer Authentication - All Your Questions AnsweredStrong Customer Authentication - All Your Questions Answered
Strong Customer Authentication - All Your Questions Answered
 
eWise at FinDEVr
eWise at FinDEVreWise at FinDEVr
eWise at FinDEVr
 
Synergies across APIs and IAM
Synergies across APIs and IAMSynergies across APIs and IAM
Synergies across APIs and IAM
 
Move your customer authentication to the next level!
Move your customer authentication to the next level!Move your customer authentication to the next level!
Move your customer authentication to the next level!
 
Microservices security - jpmc tech fest 2018
Microservices security - jpmc tech fest 2018Microservices security - jpmc tech fest 2018
Microservices security - jpmc tech fest 2018
 
[APIdays Melbourne 2019] The Consumer Data Right: Building a Successful Open ...
[APIdays Melbourne 2019] The Consumer Data Right: Building a Successful Open ...[APIdays Melbourne 2019] The Consumer Data Right: Building a Successful Open ...
[APIdays Melbourne 2019] The Consumer Data Right: Building a Successful Open ...
 
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...
 
Wso2 italia open break session #4 open banking
Wso2 italia open break session #4 open bankingWso2 italia open break session #4 open banking
Wso2 italia open break session #4 open banking
 
Wso2 italia open break session #4 - OPEN BANKING
Wso2 italia open break session #4 - OPEN BANKINGWso2 italia open break session #4 - OPEN BANKING
Wso2 italia open break session #4 - OPEN BANKING
 
SSO IN/With Drupal and Identitiy Management
SSO IN/With Drupal and Identitiy ManagementSSO IN/With Drupal and Identitiy Management
SSO IN/With Drupal and Identitiy Management
 
#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...
#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...
#3 Wso2 masterclassitalia - wso2 Identity Server: must-have per gestire le id...
 
E AUTHENICATION SYSTEM USING QR CODE AND OTP
E AUTHENICATION SYSTEM USING QR CODE AND OTPE AUTHENICATION SYSTEM USING QR CODE AND OTP
E AUTHENICATION SYSTEM USING QR CODE AND OTP
 
How to Build Interoperable Decentralized Identity Systems with OpenID for Ver...
How to Build Interoperable Decentralized Identity Systems with OpenID for Ver...How to Build Interoperable Decentralized Identity Systems with OpenID for Ver...
How to Build Interoperable Decentralized Identity Systems with OpenID for Ver...
 
Cartes Asia Dem 2010 V2
Cartes Asia Dem 2010 V2Cartes Asia Dem 2010 V2
Cartes Asia Dem 2010 V2
 

More from WSO2

Accelerating Enterprise Software Engineering with Platformless
Accelerating Enterprise Software Engineering with PlatformlessAccelerating Enterprise Software Engineering with Platformless
Accelerating Enterprise Software Engineering with PlatformlessWSO2
 
How to Create a Service in Choreo
How to Create a Service in ChoreoHow to Create a Service in Choreo
How to Create a Service in ChoreoWSO2
 
Ballerina Tech Talk - May 2023
Ballerina Tech Talk - May 2023Ballerina Tech Talk - May 2023
Ballerina Tech Talk - May 2023WSO2
 
Platform Strategy to Deliver Digital Experiences on Azure
Platform Strategy to Deliver Digital Experiences on AzurePlatform Strategy to Deliver Digital Experiences on Azure
Platform Strategy to Deliver Digital Experiences on AzureWSO2
 
GartnerITSymSessionSlides.pdf
GartnerITSymSessionSlides.pdfGartnerITSymSessionSlides.pdf
GartnerITSymSessionSlides.pdfWSO2
 
[Webinar] How to Create an API in Minutes
[Webinar] How to Create an API in Minutes[Webinar] How to Create an API in Minutes
[Webinar] How to Create an API in MinutesWSO2
 
Modernizing the Student Journey with Ethos Identity
Modernizing the Student Journey with Ethos IdentityModernizing the Student Journey with Ethos Identity
Modernizing the Student Journey with Ethos IdentityWSO2
 
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...WSO2
 
CIO Summit Berlin 2022.pptx.pdf
CIO Summit Berlin 2022.pptx.pdfCIO Summit Berlin 2022.pptx.pdf
CIO Summit Berlin 2022.pptx.pdfWSO2
 
Delivering New Digital Experiences Fast - Introducing Choreo
Delivering New Digital Experiences Fast - Introducing ChoreoDelivering New Digital Experiences Fast - Introducing Choreo
Delivering New Digital Experiences Fast - Introducing ChoreoWSO2
 
Fueling the Digital Experience Economy with Connected Products
Fueling the Digital Experience Economy with Connected ProductsFueling the Digital Experience Economy with Connected Products
Fueling the Digital Experience Economy with Connected ProductsWSO2
 
A Reference Methodology for Agile Digital Businesses
A Reference Methodology for Agile Digital Businesses A Reference Methodology for Agile Digital Businesses
A Reference Methodology for Agile Digital BusinessesWSO2
 
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)WSO2
 
Lessons from the pandemic - From a single use case to true transformation
Lessons from the pandemic - From a single use case to true transformation Lessons from the pandemic - From a single use case to true transformation
Lessons from the pandemic - From a single use case to true transformationWSO2
 
Adding Liveliness to Banking Experiences
Adding Liveliness to Banking ExperiencesAdding Liveliness to Banking Experiences
Adding Liveliness to Banking ExperiencesWSO2
 
Building a Future-ready Bank
Building a Future-ready BankBuilding a Future-ready Bank
Building a Future-ready BankWSO2
 
WSO2 API Manager Community Call - November 2021
WSO2 API Manager Community Call - November 2021WSO2 API Manager Community Call - November 2021
WSO2 API Manager Community Call - November 2021WSO2
 
[API World ] - Managing Asynchronous APIs
[API World ] - Managing Asynchronous APIs[API World ] - Managing Asynchronous APIs
[API World ] - Managing Asynchronous APIsWSO2
 
[API World 2021 ] - Understanding Cloud Native Deployment
[API World 2021 ] - Understanding Cloud Native Deployment[API World 2021 ] - Understanding Cloud Native Deployment
[API World 2021 ] - Understanding Cloud Native DeploymentWSO2
 
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”[API Word 2021] - Quantum Duality of “API as a Business and a Technology”
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”WSO2
 

More from WSO2 (20)

Accelerating Enterprise Software Engineering with Platformless
Accelerating Enterprise Software Engineering with PlatformlessAccelerating Enterprise Software Engineering with Platformless
Accelerating Enterprise Software Engineering with Platformless
 
How to Create a Service in Choreo
How to Create a Service in ChoreoHow to Create a Service in Choreo
How to Create a Service in Choreo
 
Ballerina Tech Talk - May 2023
Ballerina Tech Talk - May 2023Ballerina Tech Talk - May 2023
Ballerina Tech Talk - May 2023
 
Platform Strategy to Deliver Digital Experiences on Azure
Platform Strategy to Deliver Digital Experiences on AzurePlatform Strategy to Deliver Digital Experiences on Azure
Platform Strategy to Deliver Digital Experiences on Azure
 
GartnerITSymSessionSlides.pdf
GartnerITSymSessionSlides.pdfGartnerITSymSessionSlides.pdf
GartnerITSymSessionSlides.pdf
 
[Webinar] How to Create an API in Minutes
[Webinar] How to Create an API in Minutes[Webinar] How to Create an API in Minutes
[Webinar] How to Create an API in Minutes
 
Modernizing the Student Journey with Ethos Identity
Modernizing the Student Journey with Ethos IdentityModernizing the Student Journey with Ethos Identity
Modernizing the Student Journey with Ethos Identity
 
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...
Choreo - Build unique digital experiences on WSO2's platform, secured by Etho...
 
CIO Summit Berlin 2022.pptx.pdf
CIO Summit Berlin 2022.pptx.pdfCIO Summit Berlin 2022.pptx.pdf
CIO Summit Berlin 2022.pptx.pdf
 
Delivering New Digital Experiences Fast - Introducing Choreo
Delivering New Digital Experiences Fast - Introducing ChoreoDelivering New Digital Experiences Fast - Introducing Choreo
Delivering New Digital Experiences Fast - Introducing Choreo
 
Fueling the Digital Experience Economy with Connected Products
Fueling the Digital Experience Economy with Connected ProductsFueling the Digital Experience Economy with Connected Products
Fueling the Digital Experience Economy with Connected Products
 
A Reference Methodology for Agile Digital Businesses
A Reference Methodology for Agile Digital Businesses A Reference Methodology for Agile Digital Businesses
A Reference Methodology for Agile Digital Businesses
 
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)
Workflows in WSO2 API Manager - WSO2 API Manager Community Call (12/15/2021)
 
Lessons from the pandemic - From a single use case to true transformation
Lessons from the pandemic - From a single use case to true transformation Lessons from the pandemic - From a single use case to true transformation
Lessons from the pandemic - From a single use case to true transformation
 
Adding Liveliness to Banking Experiences
Adding Liveliness to Banking ExperiencesAdding Liveliness to Banking Experiences
Adding Liveliness to Banking Experiences
 
Building a Future-ready Bank
Building a Future-ready BankBuilding a Future-ready Bank
Building a Future-ready Bank
 
WSO2 API Manager Community Call - November 2021
WSO2 API Manager Community Call - November 2021WSO2 API Manager Community Call - November 2021
WSO2 API Manager Community Call - November 2021
 
[API World ] - Managing Asynchronous APIs
[API World ] - Managing Asynchronous APIs[API World ] - Managing Asynchronous APIs
[API World ] - Managing Asynchronous APIs
 
[API World 2021 ] - Understanding Cloud Native Deployment
[API World 2021 ] - Understanding Cloud Native Deployment[API World 2021 ] - Understanding Cloud Native Deployment
[API World 2021 ] - Understanding Cloud Native Deployment
 
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”[API Word 2021] - Quantum Duality of “API as a Business and a Technology”
[API Word 2021] - Quantum Duality of “API as a Business and a Technology”
 

Recently uploaded

SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphNeo4j
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticscarlostorres15106
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxLBM Solutions
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsMark Billinghurst
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentationphoebematthew05
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationSafe Software
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Enterprise Knowledge
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesSinan KOZAK
 
Science&tech:THE INFORMATION AGE STS.pdf
Science&tech:THE INFORMATION AGE STS.pdfScience&tech:THE INFORMATION AGE STS.pdf
Science&tech:THE INFORMATION AGE STS.pdfjimielynbastida
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationRidwan Fadjar
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
Snow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter RoadsSnow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter RoadsHyundai Motor Group
 
Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024Neo4j
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr LapshynFwdays
 
Unlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsUnlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsPrecisely
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitecturePixlogix Infotech
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024The Digital Insurer
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024Scott Keck-Warren
 

Recently uploaded (20)

SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge GraphSIEMENS: RAPUNZEL – A Tale About Knowledge Graph
SIEMENS: RAPUNZEL – A Tale About Knowledge Graph
 
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmaticsKotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
Kotlin Multiplatform & Compose Multiplatform - Starter kit for pragmatics
 
Key Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptxKey Features Of Token Development (1).pptx
Key Features Of Token Development (1).pptx
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
Human Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR SystemsHuman Factors of XR: Using Human Factors to Design XR Systems
Human Factors of XR: Using Human Factors to Design XR Systems
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
costume and set research powerpoint presentation
costume and set research powerpoint presentationcostume and set research powerpoint presentation
costume and set research powerpoint presentation
 
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry InnovationBeyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
Beyond Boundaries: Leveraging No-Code Solutions for Industry Innovation
 
Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024Designing IA for AI - Information Architecture Conference 2024
Designing IA for AI - Information Architecture Conference 2024
 
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen FramesUnblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
 
Science&tech:THE INFORMATION AGE STS.pdf
Science&tech:THE INFORMATION AGE STS.pdfScience&tech:THE INFORMATION AGE STS.pdf
Science&tech:THE INFORMATION AGE STS.pdf
 
My Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 PresentationMy Hashitalk Indonesia April 2024 Presentation
My Hashitalk Indonesia April 2024 Presentation
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
Snow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter RoadsSnow Chain-Integrated Tire for a Safe Drive on Winter Roads
Snow Chain-Integrated Tire for a Safe Drive on Winter Roads
 
Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024Build your next Gen AI Breakthrough - April 2024
Build your next Gen AI Breakthrough - April 2024
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
 
Unlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power SystemsUnlocking the Potential of the Cloud for IBM Power Systems
Unlocking the Potential of the Cloud for IBM Power Systems
 
Understanding the Laravel MVC Architecture
Understanding the Laravel MVC ArchitectureUnderstanding the Laravel MVC Architecture
Understanding the Laravel MVC Architecture
 
My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024My INSURER PTE LTD - Insurtech Innovation Award 2024
My INSURER PTE LTD - Insurtech Innovation Award 2024
 
SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024SQL Database Design For Developers at php[tek] 2024
SQL Database Design For Developers at php[tek] 2024
 

Building a Fool Proof Security Strategy for PSD2 Compliance

  • 1. Building a Fool Proof Security Strategy for PSD2 Compliance Pushpalanka Jayawardhana Financial Solutions - WSO2
  • 2. Line Up • PSD2 • PSD2 RTS on SCA and Secured Communication • Compliance Requirements – API Security • Specifications to meet recommandations Eg. OpenBanking Org UK specification/ Berlin Group/ STET/ FAPI - OIDC Hybrid Flow - Private Key JWT authentication – Strong Customer Authentication – Consent Management – Fraud Detection • Implicit Requirements – Conditional Authentication – Adaptive Authentication – Fine Grained Authorization
  • 3. PSD2 Mandates Banks to - securely expose - customer Account and Payment data - with customer consent - to regulated third parties - via APIs
  • 4. With the Objective of ● Providing a frictionless user experience ● Making electronic payments more secure ● Establish a platform for effective and integrated payment services ● Providing openness required for innovations in the domain, with enhanced competition.
  • 6. PSD2 RTS on SCA and Secured Communication ● Two factor Authentication ● Strong authentication is required with at least two factors from below, i. Knowledge factors (username and password, pin) ii. Possession factors (mobile, security device, token generator) iii. Inherence factors (fingerprint, voice, iris pattern) ● Open secured APIs for payment initiation and account information ● Access delegation with explicit user consent ● Secured Communication ● Fraud detection and audit logs
  • 7. More Requirements ● Conditional Authentication ● Adaptive Authentication ● Fine grained authorization ● Federated Authentication ● Continued security procedures
  • 9. Strong Customer Authentication (SCA) ● Correctly identifying and authenticating the end user is a necessity. ● More secure than just having basic authentication. ● WSO2 Open Banking Solution provides, ○ Multi Factor Authentication (MFA ) support with SMS/OTP, FIDO, DUO, MePin etc. ■ WSO2 connector store - https://store.wso2.com/store/assets/isconnector/list ○ Extensible to support any other mechanism preferred by banks to authenticate users. Knowledge Ownership Inherence Password, PIN, ID number Mobile device, token or Smart card Fingerprint, face or voice recognition
  • 10. API Security ● Exposing confidential internal data to external parties ● Inbuilt OAuth2 security layer provided by IAM capabilities ensures secure API invocations through WSO2 Open Banking Solution. ● Supports common grant types such as Client Credentials, Authorization Code, Password, Implicit, SAML Bearer, JWT assertion bearer and Integrated Windows Authentication (IWA) allowing APIs to be used by different types of Applications. ● Applicable entitlement management and enforcement layer Our recent webinar on API Mgt : https://wso2.com/library/webinars/2017/11/getting-your-api-management-strategy-on-point-for-psd2-compliance/
  • 11. Standards JSON REST OAuth OpenID Connect Sources - ODI OBWG : Open Banking Standard 2016 & Ⓒ By 2016 Nomura Research Institute https://www.slideshare.net/nat_sakimura/financial-grade-oauth-openid-connect
  • 12. Specifics for OIDC • OIDC Hybrid flow • Request object • s_hash • Private_key_jwt client authentication ➢ Less round trips than authorization_code ➢ Avoid multiple mix up attacks Eg. IDP mixup ➢ Protection from ‘state’ parameter injection ➢ Strengthen source authentication
  • 13. Consent Management ● Comprehensive support to manage user consent ○ For payment transactions or account information aggregations ○ Revoking consents ○ Operations from custom care officers ● GDPR Implications (May 2018)
  • 14. System is breach proof? Data Breaches Frequency 998 Incidents, 471 with confirmed data disclosure Top 3 patterns Denial of Service, Web Application Attacks and Payment Card Skimming represent 88% of all security incidents within Financial Services Threat actors 94% External, 6% Internal, <1% Partner (all incidents) Actor motives 96% Financial, 1% Espionage (all incidents) Data compromised 71% Credentials, 12% Payment, 9% Personal - DoS attacks were the most common incident type. Summary Confirmed data breaches were often associated with banking Trojans stealing and reusing customer passwords, along with ATM skimming operations. Source : Verizon 2017 Data Breach Investigations Report - 10th Edition
  • 15. Fraud Detection • Allows Organizations to – Detect known anomalies via contextually evolving rules – Detect unknown anomalies via Machine Learning – Detect Anomalous event sequences via Markov Modelling – Reduce False Positives via Fraud Scoring – Further investigate and identify complex relationships using Interactive Analytics Quantity Value Anomaly
  • 17. Adaptive Authentication ● Adaptive Authentication allows the solution to adjust the authentication strength ● This is based on the feedback from analytics engine. ● Maked the authentication stronger or relax it based on the context at hand. ● Provides better user experience, enforcing strong authentication only when it’s necessary. Transaction amount > 10000 EUR Transaction amount < 10000 EUR Basic Authentication SMS OTP Authentication Basic Authentication Authenticated Authenticated
  • 18.
  • 19. Fine Grained Authorization ● In the Authentication Flow ○ WSO2 IS can support fine grained authorization with XACML 2.0/3.0 ○ User authentication decision can be affected by other factors ■ Eg. In a specific time interval, users cannot login ● In the API calls ○ WSO2 AM can intercept the flows to apply fine grained authorization ○ Consume authorization decisions from IS, acting as a PEP ■ Eg. API response can be further customized according to user attributes. ● If the user belongs to ‘Platinum’ tier let them take online loans below an amount x.
  • 20. Continued Assurance Process • Proactive strategy (Continuous Integration) – WSO2 Security Guidelines based on OWSAP – Commercial static code and dynamic security scan tools – Third party dependency scans • Reactive strategy – Any vulnerabilities reported are addressed with the highest priority – Issue fixes to customers before public disclosure Resources : https://wso2.com/technical-reports/wso2-secure-engineering-guidelines https://wso2.com/security
  • 21. Creates an “Open Banking” platform to be PSD2 compliant and as a result become a Digitally Transformed Bank. API Specification ○ API Definitions ○ WSO2 Open Banking Customer TPP (AISP/PISP) FinTech Merchants Core Banking Internal Payment Services Bank Internal Network ISO 8583 (TCP/IP) HTTP HTTPS Other Banks HTTPS
  • 22. WSO2 Open Banking ● API Specification ● API Security + SCA ● API Analytics ● API Monetization PSD2 Compliance ● API Integration ● Fraud Detection ● API Analytics ● Dashboards TPP Provider ● Web/Mobile App Suite ● Insight Sales ● Required Integration Digital Transformation
  • 24. Resources More Information http://wso2.com/solutions/financial/open-banking/ Try out WSO2 Open Banking https://openbanking.wso2.com On Demand Webinars https://wso2.com/library/webinars/2017/11/getting-your-api-management-strategy-on-point-for-psd 2-compliance/ http://wso2.com/library/webinars/2017/08/wso2-open-banking-digital-transformation-through-psd2/ Open Banking White Paper http://wso2.com/whitepapers/digital-transformation-through-psd2-and-open-banking/