Nordic APIs, profile picture
Uploaded byNordic APIs
PDF, PPTX22 views

Standards, Standards, Everywhere… What Standards Really Mean In An API World - Chris Wood, Freelance Consultant

The document discusses the importance of standards in API development, emphasizing their role in creating consistency and enabling ecosystems. It highlights the challenges of implementing standards like PSD2 and the need for improved API descriptions and workflows to ease implementation. Additionally, the document suggests that future developments, possibly involving AI, could further enhance the standards landscape.

Embed presentation

Download as PDF, PPTX
1
Standards, Standards, Everywhere... What Standards (Should) Really Mean In An API World Chris Wood 13th March 2024
3 Standards for “open blah blah blah”
4 Standards help enable API ecosystems
5 Standards are a template for APIs
Consistency for API consumers (where it’s needed) A level playing field (where it helps) Time for more interesting things (life is boring enough) Standards, Standards, Everywhere... 6 Standards for APIs provide...
7 What no-one ever said: Implementing APIs based on standards is GREAT!
8 Standards DX A worked example
EU open banking Payment Services Directive 2 (PSD2) 9
10 Multiple new standards Same DX deal for implementers
Extended Payment Initiation Services– Implementation Guidelines Contents Published by the Berlin Group under Creative Commons Attribution-NoDerivatives 4.0 International Public License Page 17 (ref. License Notice for full license conditions) 3.3 Secured Payment Initiation Request Call POST /v2/secured-payments/{payment-product} Creates an extended payment resource for secured payments at the ASPSP for the XFPIS service. NOTE: This endpoint supports only some minor technical adaptions compared to compliance related payment initiation as defined in [oFA-ComV2]. Especially, no explicit initiation of the transfer execution is supported. This is done implicitly like in the Core XS2A interface. NOTE: This endpoint supports generically secured payment with and without requested execution dates. The ASPSP might restrict the functionality to one of these functions. Path Parameters Attribute Type Description payment- product String The addressed payment product endpoint, e.g. for SEPA Credit Transfers (SCT). The default list of products supported in this standard is:  sepa-credit-transfers  micro-sepa-credit-transfers  instant-sepa-credit-transfers  target-2-payments  cross-border-credit-transfers The ASPSP will publish which of the payment products/endpoints will be supported. For definitions of basic non-Euro generic products see [oFA PFDom]. Further products might be published by the ASPSP within its XS2A documentation. NOTE: The micro-sepa-credit-transfers endpoint is a product endpoint where an ASPSP can offer (secured) SCT payments without SCA under certain rules and obeying to the micro payment exception rules of [PSD2]. A rule could e.g. be "up to 10 payments per TPP and PSU under 10 Euro in a row before SCA is required". Since such a product might require a dedicated risk management and price structure, it is supported on a dedicated endpoint. Query Parameters No Query Parameter 11 Berlin Group • Classic financial services standards • Loooooong PDF • Rules written up in long- hand • Aimed at humans
Standards, Standards, Everywhere... 12 UK Open Banking • Swaps the PDF for HTML • Better for indexing and search • Still long with lots of detail • Still needs transposing to code...
• Praise be for API descriptions • Standards bodies provide them • Very helpful, but rarely a 1st class citizen • They are very useful as a template • Based on DAY 1 of the summit, is there a problem with complexity? Standards, Standards, Everywhere... 13 But we did get...
• Lots of verbiage • Needs to be transposed to code • Tends to be very inefficient • Involves multiple people – developer, analysts, etc. • Decreases enablement of ecosystems Standards, Standards, Everywhere... 14 Root the problem?
PSD3 is coming 15
16 Can we make standards-based APIs any easier to implement?
• We’ve already mentioned them... • API descriptions provide machine- readable representations • There’s plenty of options... • Make them 1st class citizens • Focus on use cases... 17 API descriptions Standards, Standards, Everywhere...
• Nascent standard • Codify the sequence of APIs calls • Do it within and across APIs • Provides rules for following the sequence of calls 18 OpenAPI Workflows Standards, Standards, Everywhere...
• Lots said already... • Can we make it deterministic? • Chatting does not equal an attestation • Can there be such a thing as the standards (L)LM or GPT? Standards, Standards, Everywhere... 19 What about AI?
OAI Workflow (or an alternative) Standards, Standards, Everywhere... 20 The Future of Standards DX? (A GPT for standards)
Thanks! chris@graphiso.io https://www.linkedin.com/in/sensiblewood/ https://www.instagram.com/the_zak_wilson_episode/ 21 Standards, Standards, Everywhere...

More Related Content

DOCX
Grzegorz hansen linkedin open apis in corporate banking a strategic rhapsody
byGrzegorz Hansen, PhD
 
PPTX
2017 Feb 3rd Malta - NPF2017 - APIs in context of PSD2
byDennis Van Allemeersch
 
PDF
Berlin Group aktualitātes un citi API tehniskie jautājumi
byLatvijas Banka
 
PDF
API is the New Black for FinTech & Financial Institutions
byElias Gagas
 
PPTX
apidays LIVE LONDON - API Standards and Governance Platform by Nicoleta Stoica
byapidays
 
PPTX
Future digital payments in the EU PSD2 & XS2A 1.1
byEsteban Diaz
 
PDF
Trends in Banking APIs
byTatsuo Kudo
 
PDF
A blueprint for open banking standards in the United Kingdom
byEric Horesnyi
 
Grzegorz hansen linkedin open apis in corporate banking a strategic rhapsody
byGrzegorz Hansen, PhD
 
2017 Feb 3rd Malta - NPF2017 - APIs in context of PSD2
byDennis Van Allemeersch
 
Berlin Group aktualitātes un citi API tehniskie jautājumi
byLatvijas Banka
 
API is the New Black for FinTech & Financial Institutions
byElias Gagas
 
apidays LIVE LONDON - API Standards and Governance Platform by Nicoleta Stoica
byapidays
 
Future digital payments in the EU PSD2 & XS2A 1.1
byEsteban Diaz
 
Trends in Banking APIs
byTatsuo Kudo
 
A blueprint for open banking standards in the United Kingdom
byEric Horesnyi
 

Similar to Standards, Standards, Everywhere… What Standards Really Mean In An API World - Chris Wood, Freelance Consultant

PDF
Open banking standards: The future of banks?
byInitio
 
PPTX
PSD2 & Open Banking: How to go from standards to implementation and compliance
byRogue Wave Software
 
PDF
Api design best practice
byRed Hat
 
PPTX
APIdays Helsinki 2019 - „Open Banking in a Box” and why it does not exist, Kr...
byapidays
 
PDF
Using Typespec for Open Finance Standards - Chris Wood, Ozone API
byNordic APIs
 
PPTX
Enforcing Your Organization's API Design Standards with SwaggerHub
bySmartBear
 
PPTX
Standardising APIs: Powering the Platform Economy in Financial Services
bySmartBear
 
PDF
ACI Universal Payments for a Real-Time Payments Hub - product flyer - US
byDomenico Scaffidi
 
PDF
Will APIs Ever Be (Truly) Open?
byNordic APIs
 
PPTX
Practical Application of API-First in microservices development
byChavdar Baikov
 
PDF
Getting your API Management Strategy on Point for PSD2 Compliance
byWSO2
 
PPTX
Colt inter-provider SDN NNIs and APIs
byColt Technology Services
 
PDF
The Future of API Specifications -- Aidan Cunniffe 2021
byAidan Cunniffe
 
PPTX
API Design – More than just a Payload Definition
byPhil Wilkins
 
PPTX
API-first development
byVasco Veloso
 
PDF
銀行APIのトレンド #fapisum
byTatsuo Kudo
 
PPTX
apidays LIVE Paris 2021 - Generating OpenAPIs from business models by Frederi...
byapidays
 
PDF
INTERFACE, by apidays - Mapping the Multiprotocol Landscape
byapidays
 
PPTX
PSD2: Implementing APIs that interoperate with ISO 20022
byXMLdation Ltd
 
PPTX
Fintech workshop Part II - Law Society of Hong Kong - Xccelerate
byHenrique Centieiro
 
Open banking standards: The future of banks?
byInitio
 
PSD2 & Open Banking: How to go from standards to implementation and compliance
byRogue Wave Software
 
Api design best practice
byRed Hat
 
APIdays Helsinki 2019 - „Open Banking in a Box” and why it does not exist, Kr...
byapidays
 
Using Typespec for Open Finance Standards - Chris Wood, Ozone API
byNordic APIs
 
Enforcing Your Organization's API Design Standards with SwaggerHub
bySmartBear
 
Standardising APIs: Powering the Platform Economy in Financial Services
bySmartBear
 
ACI Universal Payments for a Real-Time Payments Hub - product flyer - US
byDomenico Scaffidi
 
Will APIs Ever Be (Truly) Open?
byNordic APIs
 
Practical Application of API-First in microservices development
byChavdar Baikov
 
Getting your API Management Strategy on Point for PSD2 Compliance
byWSO2
 
Colt inter-provider SDN NNIs and APIs
byColt Technology Services
 
The Future of API Specifications -- Aidan Cunniffe 2021
byAidan Cunniffe
 
API Design – More than just a Payload Definition
byPhil Wilkins
 
API-first development
byVasco Veloso
 
銀行APIのトレンド #fapisum
byTatsuo Kudo
 
apidays LIVE Paris 2021 - Generating OpenAPIs from business models by Frederi...
byapidays
 
INTERFACE, by apidays - Mapping the Multiprotocol Landscape
byapidays
 
PSD2: Implementing APIs that interoperate with ISO 20022
byXMLdation Ltd
 
Fintech workshop Part II - Law Society of Hong Kong - Xccelerate
byHenrique Centieiro
 

More from Nordic APIs

PPTX
How to Choose the Right API Platform - We Have the Tool You Need! - Mikkel Iv...
byNordic APIs
 
PPTX
Bulletproof Backend Architecture: Building Adaptive Services with Self-Descri...
byNordic APIs
 
PDF
Implementing Zero Trust Security in API Gateway with Cilium - Pubudu Gunatila...
byNordic APIs
 
PPTX
Event-Driven Architecture the Cloud-Native Way - Manuel Ottlik, HDI Global SE
byNordic APIs
 
PPTX
Navigating the Post-OpenAPI Era with Innovative API Design Frameworks - Danie...
byNordic APIs
 
PPTX
Schema-first API Design Using Typespec - Cailin Smith, Microsoft
byNordic APIs
 
PPTX
Avoiding APIpocalypse; API Resiliency Testing FTW! - Naresh Jain, Xnsio
byNordic APIs
 
PPTX
How to Build an Integration Platform with Open Source - Magnus Hedner, Benify
byNordic APIs
 
PPTX
API Design First in Practise – An Experience Report - Hari Krishnan, Specmatic
byNordic APIs
 
PPTX
The Right Kind of API – How To Choose Appropriate API Protocols and Data Form...
byNordic APIs
 
PPTX
Why Frequent API Hackathons Are Key to Product Market Feedback and Go-to-Mark...
byNordic APIs
 
PPTX
Maximizing API Management Efficiency: The Power of Shifting Down with APIOps ...
byNordic APIs
 
PPTX
APIs Vs Events - Bala Bairapaka, Sandvik AB
byNordic APIs
 
PPTX
GraphQL in the Post-Hype Era - Daniel Hervas, Reckon Digital
byNordic APIs
 
PPTX
From Good API Design to Secure Design - Axel Grosse, 42Crunch
byNordic APIs
 
PPTX
API Revolution in IoT: How Platform Engineering Streamlines API Development -...
byNordic APIs
 
PPTX
Unlocking the ROI of API Platforms: What Success Actually Looks Like - Budhad...
byNordic APIs
 
PDF
Increase Your Productivity with No-Code GraphQL Mocking - Hugo Guerrero, Red Hat
byNordic APIs
 
PPTX
Securely Boosting Any Product with Generative AI APIs - Ruben Sitbon, Theodo ...
byNordic APIs
 
PDF
GraphQL, REST or RPC? Making the Choice! - Rob Allen, Nineteen Feet Limited
byNordic APIs
 
How to Choose the Right API Platform - We Have the Tool You Need! - Mikkel Iv...
byNordic APIs
 
Bulletproof Backend Architecture: Building Adaptive Services with Self-Descri...
byNordic APIs
 
Implementing Zero Trust Security in API Gateway with Cilium - Pubudu Gunatila...
byNordic APIs
 
Event-Driven Architecture the Cloud-Native Way - Manuel Ottlik, HDI Global SE
byNordic APIs
 
Navigating the Post-OpenAPI Era with Innovative API Design Frameworks - Danie...
byNordic APIs
 
Schema-first API Design Using Typespec - Cailin Smith, Microsoft
byNordic APIs
 
Avoiding APIpocalypse; API Resiliency Testing FTW! - Naresh Jain, Xnsio
byNordic APIs
 
How to Build an Integration Platform with Open Source - Magnus Hedner, Benify
byNordic APIs
 
API Design First in Practise – An Experience Report - Hari Krishnan, Specmatic
byNordic APIs
 
The Right Kind of API – How To Choose Appropriate API Protocols and Data Form...
byNordic APIs
 
Why Frequent API Hackathons Are Key to Product Market Feedback and Go-to-Mark...
byNordic APIs
 
Maximizing API Management Efficiency: The Power of Shifting Down with APIOps ...
byNordic APIs
 
APIs Vs Events - Bala Bairapaka, Sandvik AB
byNordic APIs
 
GraphQL in the Post-Hype Era - Daniel Hervas, Reckon Digital
byNordic APIs
 
From Good API Design to Secure Design - Axel Grosse, 42Crunch
byNordic APIs
 
API Revolution in IoT: How Platform Engineering Streamlines API Development -...
byNordic APIs
 
Unlocking the ROI of API Platforms: What Success Actually Looks Like - Budhad...
byNordic APIs
 
Increase Your Productivity with No-Code GraphQL Mocking - Hugo Guerrero, Red Hat
byNordic APIs
 
Securely Boosting Any Product with Generative AI APIs - Ruben Sitbon, Theodo ...
byNordic APIs
 
GraphQL, REST or RPC? Making the Choice! - Rob Allen, Nineteen Feet Limited
byNordic APIs
 

Recently uploaded

PDF
AI Technology important knowledge ......
byutkarshj2007
 
PPTX
Combining Induction and Transduction for Abstract Reasoning.pptx
byallen578468
 
PPTX
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
PDF
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
PDF
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 
PDF
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
PDF
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
PDF
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
PDF
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
PDF
Greetings All Students Update 3 by Mia Corp
by©LDMMIA, ©Reiki Yoga
 
PDF
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
PDF
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
PDF
Unser Jahresrückblick – MarvelClient in 2025
bypanagenda
 
PDF
Accelerating Responsible AI Adoption in Public Sector and Private Organizations.
byYasir Naveed Riaz
 
PDF
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
PDF
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
PDF
Knowing and Doing: Knowledge graphs, AI, and work
bymarainglezakis1
 
PDF
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
PDF
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
DOCX
Introduction to the World of Computers (Hardware & Software)
byALIABBAS ABASOV
 
AI Technology important knowledge ......
byutkarshj2007
 
Combining Induction and Transduction for Abstract Reasoning.pptx
byallen578468
 
Ritesh_kumar_Aatmanirbhar Bharat: Make in India, Make for the World.pptx
byriteshrkgs2008
 
The major tech developments for 2026 by Pluralsight, a research and training ...
byChris Skinner
 
8 LLM Surveys https://tinyurl.com/bdz8e6fp
byBob Marcus
 
API206-S: Transforming Supply Chains with Amazon Bedrock AgentCore - AWS re:I...
byChris Bingham
 
Making Sense of Raster: From Bit Depth to Better Workflows
bySafe Software
 
TPPmark2025 Kenta Inoue's answer 12/04/2025
byKenta Inoue
 
DIGITAL FORENSICS - Notes for Everything.pdf
bypankajkumavatbeit
 
Greetings All Students Update 3 by Mia Corp
by©LDMMIA, ©Reiki Yoga
 
TrustArc Webinar - Assessing AI Risk with Confidence
byTrustArc
 
TrustArc Webinar - Looking Ahead: The 2026 Privacy Landscape
byTrustArc
 
Unser Jahresrückblick – MarvelClient in 2025
bypanagenda
 
Accelerating Responsible AI Adoption in Public Sector and Private Organizations.
byYasir Naveed Riaz
 
Agentic Automation for Testers – A Hands-On Deep Dive
byUiPathCommunity
 
Unlocking the Power of Salesforce Architecture: Frameworks for Effective Solu...
byvarsha30tiwari
 
Knowing and Doing: Knowledge graphs, AI, and work
bymarainglezakis1
 
Usage Control for Process Discovery through a Trusted Execution Environment
byValerioGoretti
 
AI and Computer Architecture: 200 Years Together
byDmitry Zinoviev
 
Introduction to the World of Computers (Hardware & Software)
byALIABBAS ABASOV
 

Standards, Standards, Everywhere… What Standards Really Mean In An API World - Chris Wood, Freelance Consultant

  • 1.
  • 2.
    Standards, Standards, Everywhere... WhatStandards (Should) Really Mean In An API World Chris Wood 13th March 2024
  • 3.
  • 4.
  • 5.
  • 6.
    Consistency for API consumers (whereit’s needed) A level playing field (where it helps) Time for more interesting things (life is boring enough) Standards, Standards, Everywhere... 6 Standards for APIs provide...
  • 7.
    7 What no-one eversaid: Implementing APIs based on standards is GREAT!
  • 8.
  • 9.
    EU open banking PaymentServices Directive 2 (PSD2) 9
  • 10.
    10 Multiple new standards Same DXdeal for implementers
  • 11.
    Extended Payment InitiationServices– Implementation Guidelines Contents Published by the Berlin Group under Creative Commons Attribution-NoDerivatives 4.0 International Public License Page 17 (ref. License Notice for full license conditions) 3.3 Secured Payment Initiation Request Call POST /v2/secured-payments/{payment-product} Creates an extended payment resource for secured payments at the ASPSP for the XFPIS service. NOTE: This endpoint supports only some minor technical adaptions compared to compliance related payment initiation as defined in [oFA-ComV2]. Especially, no explicit initiation of the transfer execution is supported. This is done implicitly like in the Core XS2A interface. NOTE: This endpoint supports generically secured payment with and without requested execution dates. The ASPSP might restrict the functionality to one of these functions. Path Parameters Attribute Type Description payment- product String The addressed payment product endpoint, e.g. for SEPA Credit Transfers (SCT). The default list of products supported in this standard is:  sepa-credit-transfers  micro-sepa-credit-transfers  instant-sepa-credit-transfers  target-2-payments  cross-border-credit-transfers The ASPSP will publish which of the payment products/endpoints will be supported. For definitions of basic non-Euro generic products see [oFA PFDom]. Further products might be published by the ASPSP within its XS2A documentation. NOTE: The micro-sepa-credit-transfers endpoint is a product endpoint where an ASPSP can offer (secured) SCT payments without SCA under certain rules and obeying to the micro payment exception rules of [PSD2]. A rule could e.g. be "up to 10 payments per TPP and PSU under 10 Euro in a row before SCA is required". Since such a product might require a dedicated risk management and price structure, it is supported on a dedicated endpoint. Query Parameters No Query Parameter 11 Berlin Group • Classic financial services standards • Loooooong PDF • Rules written up in long- hand • Aimed at humans
  • 12.
    Standards, Standards, Everywhere... 12 UKOpen Banking • Swaps the PDF for HTML • Better for indexing and search • Still long with lots of detail • Still needs transposing to code...
  • 13.
    • Praise befor API descriptions • Standards bodies provide them • Very helpful, but rarely a 1st class citizen • They are very useful as a template • Based on DAY 1 of the summit, is there a problem with complexity? Standards, Standards, Everywhere... 13 But we did get...
  • 14.
    • Lots ofverbiage • Needs to be transposed to code • Tends to be very inefficient • Involves multiple people – developer, analysts, etc. • Decreases enablement of ecosystems Standards, Standards, Everywhere... 14 Root the problem?
  • 15.
  • 16.
    16 Can we make standards-based APIsany easier to implement?
  • 17.
    • We’ve alreadymentioned them... • API descriptions provide machine- readable representations • There’s plenty of options... • Make them 1st class citizens • Focus on use cases... 17 API descriptions Standards, Standards, Everywhere...
  • 18.
    • Nascent standard •Codify the sequence of APIs calls • Do it within and across APIs • Provides rules for following the sequence of calls 18 OpenAPI Workflows Standards, Standards, Everywhere...
  • 19.
    • Lots saidalready... • Can we make it deterministic? • Chatting does not equal an attestation • Can there be such a thing as the standards (L)LM or GPT? Standards, Standards, Everywhere... 19 What about AI?
  • 20.
    OAI Workflow (or an alternative) Standards,Standards, Everywhere... 20 The Future of Standards DX? (A GPT for standards)
  • 21.