SlideShare a Scribd company logo

[WSO2 Open Banking & Security Forum Mexico 2019] Walking the Tightrope: Balancing Security and Convenience in Banking

WSO2
WSO2

This deck will cover identity Management in an API-Driven World, identities in Open Banking, onboarding and authentication in Open Banking, identity propagation, and Aggregators

Technology
1 of 47
Download to read offline
OPEN BANKING AND SECURITY FORUM 2019 Walking the Tightrope Balancing Security and Convenience in Digital Banking Johann Dilantha Nallathamby Associate Director / Solutions Architect @ WSO2 johann@wso2.com
OPEN BANKING AND SECURITY FORUM 2019 Agenda • Identity Management in an API-Driven World • Identities in Open Banking • Onboarding and Authentication in Open Banking • Identity Propagation • Aggregators
OPEN BANKING AND SECURITY FORUM 2019 Identity Management in an API-Driven World
OPEN BANKING AND SECURITY FORUM 2019 API Management & Integration are key components in Open Banking
OPEN BANKING AND SECURITY FORUM 2019 Identity Management is an inherent part of API Management & Integration
OPEN BANKING AND SECURITY FORUM 2019 Decoupling API Runtime API Runtime +=
OPEN BANKING AND SECURITY FORUM 2019 Consumer Identity Management is like walking the tightrope. Balancing convenience along with an awareness of security and privacy requirements has always been a dilemma for security and risk professionals. Consumer identity management can significantly detract from consumer experience if it is overly complicated; however, if it’s not strong, it doesn’t provide enough security.
OPEN BANKING AND SECURITY FORUM 2019 Identities in Open Banking
OPEN BANKING AND SECURITY FORUM 2019 API Store Application Developer Application Developers
OPEN BANKING AND SECURITY FORUM 2019 Applications (TPPs) & Customers Mobile App Website API Gateway Core Banking Customer Application Integration Gateway
OPEN BANKING AND SECURITY FORUM 2019 Identity Management for Application Developers
OPEN BANKING AND SECURITY FORUM 2019 Onboarding
OPEN BANKING AND SECURITY FORUM 2019 Self-registration
OPEN BANKING AND SECURITY FORUM 2019 Federated Identity Management User Story Open Banking Implementation Entity (OBIE) mandates federated identity management with its directory for all TPPs. However the bank wishes to manage a profile-lite for its TPP users for offline communication purposes.Solution 1. Federated Login (mandatory) 2. Just-In-Time (JIT) account provisioning (optional) 3. Just-In-Time password provisioning (optional) 4. Ask required attributes (optional)
OPEN BANKING AND SECURITY FORUM 2019 Authentication
OPEN BANKING AND SECURITY FORUM 2019 Multi-factor Authentication
OPEN BANKING AND SECURITY FORUM 2019 Federated Login Sending back linked identifier 5
OPEN BANKING AND SECURITY FORUM 2019 Identity Management for Applications
OPEN BANKING AND SECURITY FORUM 2019 Onboarding
OPEN BANKING AND SECURITY FORUM 2019 API Store
OPEN BANKING AND SECURITY FORUM 2019 Authentication
OPEN BANKING AND SECURITY FORUM 2019 Delegated Access Control OAuth2 has become the defacto standard for API Security for consumer-facing APIs in an Open API Economy due its simplicity, developer friendliness and suitability across heterogenous technology platforms
OPEN BANKING AND SECURITY FORUM 2019 Identity Management Banking Customers
OPEN BANKING AND SECURITY FORUM 2019 Onboarding
OPEN BANKING AND SECURITY FORUM 2019 Directory Integration SOAPRest
OPEN BANKING AND SECURITY FORUM 2019 Federated Login User Story The bank has an existing in-house identity provider where the banks customer accounts are stored. The bank wishes to federated logins to the in-house identity provider rather than duplicating the account information and creating “identity silos”. 5 1 2 3 4 Sending back federated ID
OPEN BANKING AND SECURITY FORUM 2019 Identity Proofing
OPEN BANKING AND SECURITY FORUM 2019 Authentication
OPEN BANKING AND SECURITY FORUM 2019 Brokered Authentication All consumer-facing applications in an Open API Economy are predominantly OpenID Connect based due to its relevance to OAuth2.
OPEN BANKING AND SECURITY FORUM 2019 Strong Customer Authentication (SCA) Flows 1. Redirect 2. Decoupled 3. Embedded 4. App2App
OPEN BANKING AND SECURITY FORUM 2019 Adaptive Authentication Dynamic, Context-aware, Multi-factor Authentication
OPEN BANKING AND SECURITY FORUM 2019 Example: Level of Assurance (LoA) View balance Fund transfer
OPEN BANKING AND SECURITY FORUM 2019 Example: Region Based Step-up Authentication
OPEN BANKING AND SECURITY FORUM 2019 Example: Device based Step-up Authentication Trusted / Untrusted / New
OPEN BANKING AND SECURITY FORUM 2019 Example: Risk based Step-up Authentication Examples 1. Login patterns (time of the day, day of the week, etc.) 2. Last successful login time 3. Typing speed 4. Consecutive incorrect password attempts Get Risk Score
OPEN BANKING AND SECURITY FORUM 2019 Analyzing Login Events in a Time Window
OPEN BANKING AND SECURITY FORUM 2019 Steam Processor Editor
OPEN BANKING AND SECURITY FORUM 2019 Steam Processor Designer
OPEN BANKING AND SECURITY FORUM 2019 Identity Propagation
OPEN BANKING AND SECURITY FORUM 2019 Flowing Claims to Downstream Resources Mobile App Website API Gateway Core Banking Identity Propagation Integration Gateway
OPEN BANKING AND SECURITY FORUM 2019 Motivation 1. Positive identification of the customer and application 2. Control access to fine-grained backend services based on entitlements of the customer and application 3. Filter data in the API provider’s response according to data entitlements of customer and application 4. Audit and keep records of data access
OPEN BANKING AND SECURITY FORUM 2019 Trusted Subsystem • Most popular security pattern to propagate identities • More information: https://medium.com/@johann_nallathamby/identity-propagation-in-a-gateway-architecture-e898b9eec5ca
OPEN BANKING AND SECURITY FORUM 2019 Trusted Subsystem Security Patterns Mobile App Website API Gateway Core Banking Integration Gateway Certificate Authority <trust> • Trusted Subsystem Generated Identity Tokens <JWT> <JWT>
OPEN BANKING AND SECURITY FORUM 2019 Trusted Subsystem Security Patterns Mobile App Website API Gateway Core Banking Integration Gateway <trust> • 3rd Party Generated Identity Tokens <OAuth2 Token Introspection> <JWT> <JWT>
OPEN BANKING AND SECURITY FORUM 2019 Aggregators
OPEN BANKING AND SECURITY FORUM 2019 Dynamic routing to Bank API Providers Mobile App Website API Gateway Bank B Integration Gateway Bank A Bank A IdP Bank B IdP 1 2 3 4 5 Self-contained access token <OpenID Connect> <identity federation> <API call> <internal service call> <backend call> {“random”:“abcd…1234”,“realm”:“Bank-A”}
OPEN BANKING AND SECURITY FORUM 2019 THANK YOU wso2.com

Recommended

[BancNet Technical Update 2019] Open Banking Bringing you closer to Digital ...
[BancNet Technical Update 2019] Open Banking Bringing you closer to Digital ...[BancNet Technical Update 2019] Open Banking Bringing you closer to Digital ...
[BancNet Technical Update 2019] Open Banking Bringing you closer to Digital ...
WSO2
 
[WSO2 Open Banking & Security Forum Mexico 2019] Open Banking in Mexico: How ...
[WSO2 Open Banking & Security Forum Mexico 2019] Open Banking in Mexico: How ...[WSO2 Open Banking & Security Forum Mexico 2019] Open Banking in Mexico: How ...
[WSO2 Open Banking & Security Forum Mexico 2019] Open Banking in Mexico: How ...
WSO2
 
apidays LIVE LONDON - Open Banking from incumbent bank point of view - succes...
apidays LIVE LONDON - Open Banking from incumbent bank point of view - succes...apidays LIVE LONDON - Open Banking from incumbent bank point of view - succes...
apidays LIVE LONDON - Open Banking from incumbent bank point of view - succes...
apidays
 
apidays LIVE India - Standardising financial account aggregation by Vamsi Mad...
apidays LIVE India - Standardising financial account aggregation by Vamsi Mad...apidays LIVE India - Standardising financial account aggregation by Vamsi Mad...
apidays LIVE India - Standardising financial account aggregation by Vamsi Mad...
apidays
 
APIdays London 2019 - Why the Financial Industry Needs Intelligent API Securi...
APIdays London 2019 - Why the Financial Industry Needs Intelligent API Securi...APIdays London 2019 - Why the Financial Industry Needs Intelligent API Securi...
APIdays London 2019 - Why the Financial Industry Needs Intelligent API Securi...
apidays
 
The Road to Intelligent Authentication Journeys
The Road to Intelligent Authentication JourneysThe Road to Intelligent Authentication Journeys
The Road to Intelligent Authentication Journeys
ForgeRock
 
Philippines Fintech Report 2020
Philippines Fintech Report 2020Philippines Fintech Report 2020
Philippines Fintech Report 2020
Jocelyn Cheung
 
Case Study: Falabella
Case Study: FalabellaCase Study: Falabella
Case Study: Falabella
SME Banking Club
 

Recommended

[BancNet Technical Update 2019] Open Banking Bringing you closer to Digital ...
[BancNet Technical Update 2019] Open Banking Bringing you closer to Digital ...[BancNet Technical Update 2019] Open Banking Bringing you closer to Digital ...
[BancNet Technical Update 2019] Open Banking Bringing you closer to Digital ...
WSO2
 
[WSO2 Open Banking & Security Forum Mexico 2019] Open Banking in Mexico: How ...
[WSO2 Open Banking & Security Forum Mexico 2019] Open Banking in Mexico: How ...[WSO2 Open Banking & Security Forum Mexico 2019] Open Banking in Mexico: How ...
[WSO2 Open Banking & Security Forum Mexico 2019] Open Banking in Mexico: How ...
WSO2
 
apidays LIVE LONDON - Open Banking from incumbent bank point of view - succes...
apidays LIVE LONDON - Open Banking from incumbent bank point of view - succes...apidays LIVE LONDON - Open Banking from incumbent bank point of view - succes...
apidays LIVE LONDON - Open Banking from incumbent bank point of view - succes...
apidays
 
apidays LIVE India - Standardising financial account aggregation by Vamsi Mad...
apidays LIVE India - Standardising financial account aggregation by Vamsi Mad...apidays LIVE India - Standardising financial account aggregation by Vamsi Mad...
apidays LIVE India - Standardising financial account aggregation by Vamsi Mad...
apidays
 
APIdays London 2019 - Why the Financial Industry Needs Intelligent API Securi...
APIdays London 2019 - Why the Financial Industry Needs Intelligent API Securi...APIdays London 2019 - Why the Financial Industry Needs Intelligent API Securi...
APIdays London 2019 - Why the Financial Industry Needs Intelligent API Securi...
apidays
 
The Road to Intelligent Authentication Journeys
The Road to Intelligent Authentication JourneysThe Road to Intelligent Authentication Journeys
The Road to Intelligent Authentication Journeys
ForgeRock
 
Philippines Fintech Report 2020
Philippines Fintech Report 2020Philippines Fintech Report 2020
Philippines Fintech Report 2020
Jocelyn Cheung
 
Case Study: Falabella
Case Study: FalabellaCase Study: Falabella
Case Study: Falabella
SME Banking Club
 
Case Study: Wilo bank
Case Study: Wilo bankCase Study: Wilo bank
Case Study: Wilo bank
SME Banking Club
 
Case Study: The Future of Digital Payments
Case Study: The Future of Digital PaymentsCase Study: The Future of Digital Payments
Case Study: The Future of Digital Payments
SME Banking Club
 
A Telco and End-user Perspective on the Authentication Journey
A Telco and End-user Perspective on the Authentication JourneyA Telco and End-user Perspective on the Authentication Journey
A Telco and End-user Perspective on the Authentication Journey
FIDO Alliance
 
Loqr
LoqrLoqr
Loqr
Caixa Geral Depósitos
 
apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...
apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...
apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...
apidays
 
apidays LIVE LONDON - Open Finance, it's already happening by Dave Tonge
apidays LIVE LONDON - Open Finance, it's already happening by Dave Tongeapidays LIVE LONDON - Open Finance, it's already happening by Dave Tonge
apidays LIVE LONDON - Open Finance, it's already happening by Dave Tonge
apidays
 
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
apidays
 
Case study: Prisma
Case study: PrismaCase study: Prisma
Case study: Prisma
SME Banking Club
 
BUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENT
BUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENTBUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENT
BUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENT
ForgeRock
 
360 degrees of FinTech (R)evolution
360 degrees of FinTech (R)evolution360 degrees of FinTech (R)evolution
360 degrees of FinTech (R)evolution
PaymentComponents
 
GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...
GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...
GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...
Ubisecure
 
Γιάννης Δοξαράς, Founder & CEO, Warply
Γιάννης Δοξαράς, Founder & CEO, WarplyΓιάννης Δοξαράς, Founder & CEO, Warply
Γιάννης Δοξαράς, Founder & CEO, Warply
Starttech Ventures
 
Covid impact on digital identity
Covid impact on digital identityCovid impact on digital identity
Covid impact on digital identity
Red Hat
 
Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...
Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...
Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...
Idan Tohami
 
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
FinTechLabs.io
 
Spellpoint - Securing Access for Microservices
Spellpoint - Securing Access for MicroservicesSpellpoint - Securing Access for Microservices
Spellpoint - Securing Access for Microservices
Ubisecure
 
Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]
Kannan Srinivasan
 
apidays LIVE LONDON - Running an open banking platform for strategic partners...
apidays LIVE LONDON - Running an open banking platform for strategic partners...apidays LIVE LONDON - Running an open banking platform for strategic partners...
apidays LIVE LONDON - Running an open banking platform for strategic partners...
apidays
 
Inside Security - Strong Authentication with Smartphones
Inside Security - Strong Authentication with SmartphonesInside Security - Strong Authentication with Smartphones
Inside Security - Strong Authentication with Smartphones
Ubisecure
 
Aditro - IAM as part of Cloud Business strategy
Aditro - IAM as part of Cloud Business strategyAditro - IAM as part of Cloud Business strategy
Aditro - IAM as part of Cloud Business strategy
Ubisecure
 
[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...
[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...
[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...
WSO2
 
[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...
[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...
[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...
WSO2
 

More Related Content

What's hot

Case Study: Wilo bank
Case Study: Wilo bankCase Study: Wilo bank
Case Study: Wilo bank
SME Banking Club
 
Case Study: The Future of Digital Payments
Case Study: The Future of Digital PaymentsCase Study: The Future of Digital Payments
Case Study: The Future of Digital Payments
SME Banking Club
 
A Telco and End-user Perspective on the Authentication Journey
A Telco and End-user Perspective on the Authentication JourneyA Telco and End-user Perspective on the Authentication Journey
A Telco and End-user Perspective on the Authentication Journey
FIDO Alliance
 
Loqr
LoqrLoqr
Loqr
Caixa Geral Depósitos
 
apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...
apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...
apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...
apidays
 
apidays LIVE LONDON - Open Finance, it's already happening by Dave Tonge
apidays LIVE LONDON - Open Finance, it's already happening by Dave Tongeapidays LIVE LONDON - Open Finance, it's already happening by Dave Tonge
apidays LIVE LONDON - Open Finance, it's already happening by Dave Tonge
apidays
 
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
apidays
 
Case study: Prisma
Case study: PrismaCase study: Prisma
Case study: Prisma
SME Banking Club
 
BUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENT
BUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENTBUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENT
BUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENT
ForgeRock
 
360 degrees of FinTech (R)evolution
360 degrees of FinTech (R)evolution360 degrees of FinTech (R)evolution
360 degrees of FinTech (R)evolution
PaymentComponents
 
GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...
GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...
GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...
Ubisecure
 
Γιάννης Δοξαράς, Founder & CEO, Warply
Γιάννης Δοξαράς, Founder & CEO, WarplyΓιάννης Δοξαράς, Founder & CEO, Warply
Γιάννης Δοξαράς, Founder & CEO, Warply
Starttech Ventures
 
Covid impact on digital identity
Covid impact on digital identityCovid impact on digital identity
Covid impact on digital identity
Red Hat
 
Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...
Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...
Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...
Idan Tohami
 
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
FinTechLabs.io
 
Spellpoint - Securing Access for Microservices
Spellpoint - Securing Access for MicroservicesSpellpoint - Securing Access for Microservices
Spellpoint - Securing Access for Microservices
Ubisecure
 
Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]
Kannan Srinivasan
 
apidays LIVE LONDON - Running an open banking platform for strategic partners...
apidays LIVE LONDON - Running an open banking platform for strategic partners...apidays LIVE LONDON - Running an open banking platform for strategic partners...
apidays LIVE LONDON - Running an open banking platform for strategic partners...
apidays
 
Inside Security - Strong Authentication with Smartphones
Inside Security - Strong Authentication with SmartphonesInside Security - Strong Authentication with Smartphones
Inside Security - Strong Authentication with Smartphones
Ubisecure
 
Aditro - IAM as part of Cloud Business strategy
Aditro - IAM as part of Cloud Business strategyAditro - IAM as part of Cloud Business strategy
Aditro - IAM as part of Cloud Business strategy
Ubisecure
 

What's hot (20)

Case Study: Wilo bank
Case Study: Wilo bankCase Study: Wilo bank
Case Study: Wilo bank
 
Case Study: The Future of Digital Payments
Case Study: The Future of Digital PaymentsCase Study: The Future of Digital Payments
Case Study: The Future of Digital Payments
 
A Telco and End-user Perspective on the Authentication Journey
A Telco and End-user Perspective on the Authentication JourneyA Telco and End-user Perspective on the Authentication Journey
A Telco and End-user Perspective on the Authentication Journey
 
Loqr
LoqrLoqr
Loqr
 
apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...
apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...
apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...
 
apidays LIVE LONDON - Open Finance, it's already happening by Dave Tonge
apidays LIVE LONDON - Open Finance, it's already happening by Dave Tongeapidays LIVE LONDON - Open Finance, it's already happening by Dave Tonge
apidays LIVE LONDON - Open Finance, it's already happening by Dave Tonge
 
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...
 
Case study: Prisma
Case study: PrismaCase study: Prisma
Case study: Prisma
 
BUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENT
BUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENTBUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENT
BUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENT
 
360 degrees of FinTech (R)evolution
360 degrees of FinTech (R)evolution360 degrees of FinTech (R)evolution
360 degrees of FinTech (R)evolution
 
GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...
GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...
GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...
 
Γιάννης Δοξαράς, Founder & CEO, Warply
Γιάννης Δοξαράς, Founder & CEO, WarplyΓιάννης Δοξαράς, Founder & CEO, Warply
Γιάννης Δοξαράς, Founder & CEO, Warply
 
Covid impact on digital identity
Covid impact on digital identityCovid impact on digital identity
Covid impact on digital identity
 
Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...
Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...
Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...
 
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...
 
Spellpoint - Securing Access for Microservices
Spellpoint - Securing Access for MicroservicesSpellpoint - Securing Access for Microservices
Spellpoint - Securing Access for Microservices
 
Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]Open banking [Evolution, Risks & Opportunities]
Open banking [Evolution, Risks & Opportunities]
 
apidays LIVE LONDON - Running an open banking platform for strategic partners...
apidays LIVE LONDON - Running an open banking platform for strategic partners...apidays LIVE LONDON - Running an open banking platform for strategic partners...
apidays LIVE LONDON - Running an open banking platform for strategic partners...
 
Inside Security - Strong Authentication with Smartphones
Inside Security - Strong Authentication with SmartphonesInside Security - Strong Authentication with Smartphones
Inside Security - Strong Authentication with Smartphones
 
Aditro - IAM as part of Cloud Business strategy
Aditro - IAM as part of Cloud Business strategyAditro - IAM as part of Cloud Business strategy
Aditro - IAM as part of Cloud Business strategy
 

Similar to [WSO2 Open Banking & Security Forum Mexico 2019] Walking the Tightrope: Balancing Security and Convenience in Banking

[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...
[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...
[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...
WSO2
 
[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...
[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...
[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...
WSO2
 
[WSO2 Open Banking & Security Forum Mexico 2019] API-Driven World
[WSO2 Open Banking & Security Forum Mexico 2019] API-Driven World[WSO2 Open Banking & Security Forum Mexico 2019] API-Driven World
[WSO2 Open Banking & Security Forum Mexico 2019] API-Driven World
WSO2
 
[WSO2 Integration Summit Stuttgart 2019] Identity and Access Management in an...
[WSO2 Integration Summit Stuttgart 2019] Identity and Access Management in an...[WSO2 Integration Summit Stuttgart 2019] Identity and Access Management in an...
[WSO2 Integration Summit Stuttgart 2019] Identity and Access Management in an...
WSO2
 
[WSO2 Integration Summit Nairobi 2019] Identity and Access Management in an A...
[WSO2 Integration Summit Nairobi 2019] Identity and Access Management in an A...[WSO2 Integration Summit Nairobi 2019] Identity and Access Management in an A...
[WSO2 Integration Summit Nairobi 2019] Identity and Access Management in an A...
WSO2
 
WSO2 - Yenlo Integration Summit Stuttgart 15 May 2019 - IAM in an API Driven ...
WSO2 - Yenlo Integration Summit Stuttgart 15 May 2019 - IAM in an API Driven ...WSO2 - Yenlo Integration Summit Stuttgart 15 May 2019 - IAM in an API Driven ...
WSO2 - Yenlo Integration Summit Stuttgart 15 May 2019 - IAM in an API Driven ...
Yenlo
 
[WSO2 Summit Sydney 2019] Identity and Access Management in an API-driven World
[WSO2 Summit Sydney 2019] Identity and Access Management in an API-driven World[WSO2 Summit Sydney 2019] Identity and Access Management in an API-driven World
[WSO2 Summit Sydney 2019] Identity and Access Management in an API-driven World
WSO2
 
WSO2 API Day Toronto 2019 API-driven World
WSO2 API Day Toronto 2019 API-driven WorldWSO2 API Day Toronto 2019 API-driven World
WSO2 API Day Toronto 2019 API-driven World
WSO2
 
[WSO2 Integration Summit Singapore 2019] Transforming Your Business through APIs
[WSO2 Integration Summit Singapore 2019] Transforming Your Business through APIs[WSO2 Integration Summit Singapore 2019] Transforming Your Business through APIs
[WSO2 Integration Summit Singapore 2019] Transforming Your Business through APIs
WSO2
 
[WSO2 Integration Summit London 2019] The API-driven World
[WSO2 Integration Summit London 2019] The API-driven World[WSO2 Integration Summit London 2019] The API-driven World
[WSO2 Integration Summit London 2019] The API-driven World
WSO2
 
[WSO2 Integration Summit Singapore 2019] The API-driven World
[WSO2 Integration Summit Singapore 2019] The API-driven World[WSO2 Integration Summit Singapore 2019] The API-driven World
[WSO2 Integration Summit Singapore 2019] The API-driven World
WSO2
 
[WSO2 Summit Sydney 2019] API-Driven World
[WSO2 Summit Sydney 2019] API-Driven World[WSO2 Summit Sydney 2019] API-Driven World
[WSO2 Summit Sydney 2019] API-Driven World
WSO2
 
Unlock Open Banking with Definition-driven API Development
Unlock Open Banking with Definition-driven API DevelopmentUnlock Open Banking with Definition-driven API Development
Unlock Open Banking with Definition-driven API Development
SmartBear
 
[WSO2 Integration Summit San Francisco 2019] The API-driven World
[WSO2 Integration Summit San Francisco 2019] The API-driven World[WSO2 Integration Summit San Francisco 2019] The API-driven World
[WSO2 Integration Summit San Francisco 2019] The API-driven World
WSO2
 
Powering an API-driven world | Yenlo - WSO2 Integration Summit 2019, San Fran...
Powering an API-driven world | Yenlo - WSO2 Integration Summit 2019, San Fran...Powering an API-driven world | Yenlo - WSO2 Integration Summit 2019, San Fran...
Powering an API-driven world | Yenlo - WSO2 Integration Summit 2019, San Fran...
Yenlo
 
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...
IRJET Journal
 
Disrupt or be disrupted – Using secure APIs to drive digital transformation
Disrupt or be disrupted – Using secure APIs to drive digital transformationDisrupt or be disrupted – Using secure APIs to drive digital transformation
Disrupt or be disrupted – Using secure APIs to drive digital transformation
Rogue Wave Software
 
APIdays Singapore 2019 - Securing Value in API Ecosystems, Ajay Biyani, Head ...
APIdays Singapore 2019 - Securing Value in API Ecosystems, Ajay Biyani, Head ...APIdays Singapore 2019 - Securing Value in API Ecosystems, Ajay Biyani, Head ...
APIdays Singapore 2019 - Securing Value in API Ecosystems, Ajay Biyani, Head ...
apidays
 
WSO2 - Yenlo Integration Summit Stuttgart May 15 2019 - Open Banking APIs and...
WSO2 - Yenlo Integration Summit Stuttgart May 15 2019 - Open Banking APIs and...WSO2 - Yenlo Integration Summit Stuttgart May 15 2019 - Open Banking APIs and...
WSO2 - Yenlo Integration Summit Stuttgart May 15 2019 - Open Banking APIs and...
Yenlo
 
apidays London 2022 - Collaborative Governance, Arnab Mitra (BIAN) & Frank Ki...
apidays London 2022 - Collaborative Governance, Arnab Mitra (BIAN) & Frank Ki...apidays London 2022 - Collaborative Governance, Arnab Mitra (BIAN) & Frank Ki...
apidays London 2022 - Collaborative Governance, Arnab Mitra (BIAN) & Frank Ki...
apidays
 

Similar to [WSO2 Open Banking & Security Forum Mexico 2019] Walking the Tightrope: Balancing Security and Convenience in Banking (20)

[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...
[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...
[WSO2 Integration Summit Johannesburg 2019] Identity and Access Management in...
 
[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...
[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...
[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...
 
[WSO2 Open Banking & Security Forum Mexico 2019] API-Driven World
[WSO2 Open Banking & Security Forum Mexico 2019] API-Driven World[WSO2 Open Banking & Security Forum Mexico 2019] API-Driven World
[WSO2 Open Banking & Security Forum Mexico 2019] API-Driven World
 
[WSO2 Integration Summit Stuttgart 2019] Identity and Access Management in an...
[WSO2 Integration Summit Stuttgart 2019] Identity and Access Management in an...[WSO2 Integration Summit Stuttgart 2019] Identity and Access Management in an...
[WSO2 Integration Summit Stuttgart 2019] Identity and Access Management in an...
 
[WSO2 Integration Summit Nairobi 2019] Identity and Access Management in an A...
[WSO2 Integration Summit Nairobi 2019] Identity and Access Management in an A...[WSO2 Integration Summit Nairobi 2019] Identity and Access Management in an A...
[WSO2 Integration Summit Nairobi 2019] Identity and Access Management in an A...
 
WSO2 - Yenlo Integration Summit Stuttgart 15 May 2019 - IAM in an API Driven ...
WSO2 - Yenlo Integration Summit Stuttgart 15 May 2019 - IAM in an API Driven ...WSO2 - Yenlo Integration Summit Stuttgart 15 May 2019 - IAM in an API Driven ...
WSO2 - Yenlo Integration Summit Stuttgart 15 May 2019 - IAM in an API Driven ...
 
[WSO2 Summit Sydney 2019] Identity and Access Management in an API-driven World
[WSO2 Summit Sydney 2019] Identity and Access Management in an API-driven World[WSO2 Summit Sydney 2019] Identity and Access Management in an API-driven World
[WSO2 Summit Sydney 2019] Identity and Access Management in an API-driven World
 
WSO2 API Day Toronto 2019 API-driven World
WSO2 API Day Toronto 2019 API-driven WorldWSO2 API Day Toronto 2019 API-driven World
WSO2 API Day Toronto 2019 API-driven World
 
[WSO2 Integration Summit Singapore 2019] Transforming Your Business through APIs
[WSO2 Integration Summit Singapore 2019] Transforming Your Business through APIs[WSO2 Integration Summit Singapore 2019] Transforming Your Business through APIs
[WSO2 Integration Summit Singapore 2019] Transforming Your Business through APIs
 
[WSO2 Integration Summit London 2019] The API-driven World
[WSO2 Integration Summit London 2019] The API-driven World[WSO2 Integration Summit London 2019] The API-driven World
[WSO2 Integration Summit London 2019] The API-driven World
 
[WSO2 Integration Summit Singapore 2019] The API-driven World
[WSO2 Integration Summit Singapore 2019] The API-driven World[WSO2 Integration Summit Singapore 2019] The API-driven World
[WSO2 Integration Summit Singapore 2019] The API-driven World
 
[WSO2 Summit Sydney 2019] API-Driven World
[WSO2 Summit Sydney 2019] API-Driven World[WSO2 Summit Sydney 2019] API-Driven World
[WSO2 Summit Sydney 2019] API-Driven World
 
Unlock Open Banking with Definition-driven API Development
Unlock Open Banking with Definition-driven API DevelopmentUnlock Open Banking with Definition-driven API Development
Unlock Open Banking with Definition-driven API Development
 
[WSO2 Integration Summit San Francisco 2019] The API-driven World
[WSO2 Integration Summit San Francisco 2019] The API-driven World[WSO2 Integration Summit San Francisco 2019] The API-driven World
[WSO2 Integration Summit San Francisco 2019] The API-driven World
 
Powering an API-driven world | Yenlo - WSO2 Integration Summit 2019, San Fran...
Powering an API-driven world | Yenlo - WSO2 Integration Summit 2019, San Fran...Powering an API-driven world | Yenlo - WSO2 Integration Summit 2019, San Fran...
Powering an API-driven world | Yenlo - WSO2 Integration Summit 2019, San Fran...
 
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...
 
Disrupt or be disrupted – Using secure APIs to drive digital transformation
Disrupt or be disrupted – Using secure APIs to drive digital transformationDisrupt or be disrupted – Using secure APIs to drive digital transformation
Disrupt or be disrupted – Using secure APIs to drive digital transformation
 
APIdays Singapore 2019 - Securing Value in API Ecosystems, Ajay Biyani, Head ...
APIdays Singapore 2019 - Securing Value in API Ecosystems, Ajay Biyani, Head ...APIdays Singapore 2019 - Securing Value in API Ecosystems, Ajay Biyani, Head ...
APIdays Singapore 2019 - Securing Value in API Ecosystems, Ajay Biyani, Head ...
 
WSO2 - Yenlo Integration Summit Stuttgart May 15 2019 - Open Banking APIs and...
WSO2 - Yenlo Integration Summit Stuttgart May 15 2019 - Open Banking APIs and...WSO2 - Yenlo Integration Summit Stuttgart May 15 2019 - Open Banking APIs and...
WSO2 - Yenlo Integration Summit Stuttgart May 15 2019 - Open Banking APIs and...
 
apidays London 2022 - Collaborative Governance, Arnab Mitra (BIAN) & Frank Ki...
apidays London 2022 - Collaborative Governance, Arnab Mitra (BIAN) & Frank Ki...apidays London 2022 - Collaborative Governance, Arnab Mitra (BIAN) & Frank Ki...
apidays London 2022 - Collaborative Governance, Arnab Mitra (BIAN) & Frank Ki...
 

More from WSO2

Accelerate Enterprise Software Engineering with Platformless
Accelerate Enterprise Software Engineering with PlatformlessAccelerate Enterprise Software Engineering with Platformless
Accelerate Enterprise Software Engineering with Platformless
WSO2
 
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital TransformationWSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2
 
architecting-ai-in-the-enterprise-apis-and-applications.pdf
architecting-ai-in-the-enterprise-apis-and-applications.pdfarchitecting-ai-in-the-enterprise-apis-and-applications.pdf
architecting-ai-in-the-enterprise-apis-and-applications.pdf
WSO2
 
Driving Innovation: Scania's API Revolution with WSO2
Driving Innovation: Scania's API Revolution with WSO2Driving Innovation: Scania's API Revolution with WSO2
Driving Innovation: Scania's API Revolution with WSO2
WSO2
 
Less Is More: Utilizing Ballerina to Architect a Cloud Data Platform
Less Is More: Utilizing Ballerina to Architect a Cloud Data PlatformLess Is More: Utilizing Ballerina to Architect a Cloud Data Platform
Less Is More: Utilizing Ballerina to Architect a Cloud Data Platform
WSO2
 
Modernizing Legacy Systems Using Ballerina
Modernizing Legacy Systems Using BallerinaModernizing Legacy Systems Using Ballerina
Modernizing Legacy Systems Using Ballerina
WSO2
 
WSO2CON 2024 - Unlocking the Identity: Embracing CIAM 2.0 for a Competitive A...
WSO2CON 2024 - Unlocking the Identity: Embracing CIAM 2.0 for a Competitive A...WSO2CON 2024 - Unlocking the Identity: Embracing CIAM 2.0 for a Competitive A...
WSO2CON 2024 - Unlocking the Identity: Embracing CIAM 2.0 for a Competitive A...
WSO2
 
WSO2CON 2024 Slides - Unlocking Value with AI
WSO2CON 2024 Slides - Unlocking Value with AIWSO2CON 2024 Slides - Unlocking Value with AI
WSO2CON 2024 Slides - Unlocking Value with AI
WSO2
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
WSO2
 
Quantum Leap in Next-Generation Computing
Quantum Leap in Next-Generation ComputingQuantum Leap in Next-Generation Computing
Quantum Leap in Next-Generation Computing
WSO2
 
WSO2CON 2024 - Elevating the Integration Game to the Cloud
WSO2CON 2024 - Elevating the Integration Game to the CloudWSO2CON 2024 - Elevating the Integration Game to the Cloud
WSO2CON 2024 - Elevating the Integration Game to the Cloud
WSO2
 
WSO2CON 2024 - OSU & WSO2: A Decade Journey in Integration & Innovation
WSO2CON 2024 - OSU & WSO2: A Decade Journey in Integration & InnovationWSO2CON 2024 - OSU & WSO2: A Decade Journey in Integration & Innovation
WSO2CON 2024 - OSU & WSO2: A Decade Journey in Integration & Innovation
WSO2
 
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open SourceWSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
WSO2
 
WSO2CON 2024 Slides - Open Source to SaaS
WSO2CON 2024 Slides - Open Source to SaaSWSO2CON 2024 Slides - Open Source to SaaS
WSO2CON 2024 Slides - Open Source to SaaS
WSO2
 
WSO2CON 2024 - Does Open Source Still Matter?
WSO2CON 2024 - Does Open Source Still Matter?WSO2CON 2024 - Does Open Source Still Matter?
WSO2CON 2024 - Does Open Source Still Matter?
WSO2
 
WSO2CON 2024 - IoT Needs CIAM: The Importance of Centralized IAM in a Growing...
WSO2CON 2024 - IoT Needs CIAM: The Importance of Centralized IAM in a Growing...WSO2CON 2024 - IoT Needs CIAM: The Importance of Centralized IAM in a Growing...
WSO2CON 2024 - IoT Needs CIAM: The Importance of Centralized IAM in a Growing...
WSO2
 
WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...
WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...
WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...
WSO2
 
WSO2CON 2024 - Software Engineering for Digital Businesses
WSO2CON 2024 - Software Engineering for Digital BusinessesWSO2CON 2024 - Software Engineering for Digital Businesses
WSO2CON 2024 - Software Engineering for Digital Businesses
WSO2
 
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
WSO2
 
WSO2CON 2024 - Designing Event-Driven Enterprises: Stories of Transformation
WSO2CON 2024 - Designing Event-Driven Enterprises: Stories of TransformationWSO2CON 2024 - Designing Event-Driven Enterprises: Stories of Transformation
WSO2CON 2024 - Designing Event-Driven Enterprises: Stories of Transformation
WSO2
 

More from WSO2 (20)

Accelerate Enterprise Software Engineering with Platformless
Accelerate Enterprise Software Engineering with PlatformlessAccelerate Enterprise Software Engineering with Platformless
Accelerate Enterprise Software Engineering with Platformless
 
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital TransformationWSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
WSO2Con2024 - WSO2's IAM Vision: Identity-Led Digital Transformation
 
architecting-ai-in-the-enterprise-apis-and-applications.pdf
architecting-ai-in-the-enterprise-apis-and-applications.pdfarchitecting-ai-in-the-enterprise-apis-and-applications.pdf
architecting-ai-in-the-enterprise-apis-and-applications.pdf
 
Driving Innovation: Scania's API Revolution with WSO2
Driving Innovation: Scania's API Revolution with WSO2Driving Innovation: Scania's API Revolution with WSO2
Driving Innovation: Scania's API Revolution with WSO2
 
Less Is More: Utilizing Ballerina to Architect a Cloud Data Platform
Less Is More: Utilizing Ballerina to Architect a Cloud Data PlatformLess Is More: Utilizing Ballerina to Architect a Cloud Data Platform
Less Is More: Utilizing Ballerina to Architect a Cloud Data Platform
 
Modernizing Legacy Systems Using Ballerina
Modernizing Legacy Systems Using BallerinaModernizing Legacy Systems Using Ballerina
Modernizing Legacy Systems Using Ballerina
 
WSO2CON 2024 - Unlocking the Identity: Embracing CIAM 2.0 for a Competitive A...
WSO2CON 2024 - Unlocking the Identity: Embracing CIAM 2.0 for a Competitive A...WSO2CON 2024 - Unlocking the Identity: Embracing CIAM 2.0 for a Competitive A...
WSO2CON 2024 - Unlocking the Identity: Embracing CIAM 2.0 for a Competitive A...
 
WSO2CON 2024 Slides - Unlocking Value with AI
WSO2CON 2024 Slides - Unlocking Value with AIWSO2CON 2024 Slides - Unlocking Value with AI
WSO2CON 2024 Slides - Unlocking Value with AI
 
Platformless Horizons for Digital Adaptability
Platformless Horizons for Digital AdaptabilityPlatformless Horizons for Digital Adaptability
Platformless Horizons for Digital Adaptability
 
Quantum Leap in Next-Generation Computing
Quantum Leap in Next-Generation ComputingQuantum Leap in Next-Generation Computing
Quantum Leap in Next-Generation Computing
 
WSO2CON 2024 - Elevating the Integration Game to the Cloud
WSO2CON 2024 - Elevating the Integration Game to the CloudWSO2CON 2024 - Elevating the Integration Game to the Cloud
WSO2CON 2024 - Elevating the Integration Game to the Cloud
 
WSO2CON 2024 - OSU & WSO2: A Decade Journey in Integration & Innovation
WSO2CON 2024 - OSU & WSO2: A Decade Journey in Integration & InnovationWSO2CON 2024 - OSU & WSO2: A Decade Journey in Integration & Innovation
WSO2CON 2024 - OSU & WSO2: A Decade Journey in Integration & Innovation
 
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open SourceWSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
WSO2CON 2024 - Freedom First—Unleashing Developer Potential with Open Source
 
WSO2CON 2024 Slides - Open Source to SaaS
WSO2CON 2024 Slides - Open Source to SaaSWSO2CON 2024 Slides - Open Source to SaaS
WSO2CON 2024 Slides - Open Source to SaaS
 
WSO2CON 2024 - Does Open Source Still Matter?
WSO2CON 2024 - Does Open Source Still Matter?WSO2CON 2024 - Does Open Source Still Matter?
WSO2CON 2024 - Does Open Source Still Matter?
 
WSO2CON 2024 - IoT Needs CIAM: The Importance of Centralized IAM in a Growing...
WSO2CON 2024 - IoT Needs CIAM: The Importance of Centralized IAM in a Growing...WSO2CON 2024 - IoT Needs CIAM: The Importance of Centralized IAM in a Growing...
WSO2CON 2024 - IoT Needs CIAM: The Importance of Centralized IAM in a Growing...
 
WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...
WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...
WSO2CON 2024 - WSO2's Digital Transformation Journey with Choreo: A Platforml...
 
WSO2CON 2024 - Software Engineering for Digital Businesses
WSO2CON 2024 - Software Engineering for Digital BusinessesWSO2CON 2024 - Software Engineering for Digital Businesses
WSO2CON 2024 - Software Engineering for Digital Businesses
 
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
WSO2CON 2024 - Navigating API Complexity: REST, GraphQL, gRPC, Websocket, Web...
 
WSO2CON 2024 - Designing Event-Driven Enterprises: Stories of Transformation
WSO2CON 2024 - Designing Event-Driven Enterprises: Stories of TransformationWSO2CON 2024 - Designing Event-Driven Enterprises: Stories of Transformation
WSO2CON 2024 - Designing Event-Driven Enterprises: Stories of Transformation
 

Recently uploaded

How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdfHow to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
Chart Kalyan
 
Driving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success StoryDriving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success Story
Safe Software
 
OpenID AuthZEN Interop Read Out - Authorization
OpenID AuthZEN Interop Read Out - AuthorizationOpenID AuthZEN Interop Read Out - Authorization
OpenID AuthZEN Interop Read Out - Authorization
David Brossard
 
Choosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptxChoosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptx
Brandon Minnick, MBA
 
UiPath Test Automation using UiPath Test Suite series, part 6
UiPath Test Automation using UiPath Test Suite series, part 6UiPath Test Automation using UiPath Test Suite series, part 6
UiPath Test Automation using UiPath Test Suite series, part 6
DianaGray10
 
Digital Marketing Trends in 2024 | Guide for Staying Ahead
Digital Marketing Trends in 2024 | Guide for Staying AheadDigital Marketing Trends in 2024 | Guide for Staying Ahead
Digital Marketing Trends in 2024 | Guide for Staying Ahead
Wask
 
5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides
DanBrown980551
 
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
名前 です男
 
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with SlackLet's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
shyamraj55
 
HCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAUHCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAU
panagenda
 
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?Cosa hanno in comune un mattoncino Lego e la backdoor XZ?
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?
Speck&Tech
 
Fueling AI with Great Data with Airbyte Webinar
Fueling AI with Great Data with Airbyte WebinarFueling AI with Great Data with Airbyte Webinar
Fueling AI with Great Data with Airbyte Webinar
Zilliz
 
Mariano G Tinti - Decoding SpaceX
Mariano G Tinti - Decoding SpaceXMariano G Tinti - Decoding SpaceX
Mariano G Tinti - Decoding SpaceX
Mariano Tinti
 
Taking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdfTaking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdf
ssuserfac0301
 
Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024
Hiroshi SHIBATA
 
Best 20 SEO Techniques To Improve Website Visibility In SERP
Best 20 SEO Techniques To Improve Website Visibility In SERPBest 20 SEO Techniques To Improve Website Visibility In SERP
Best 20 SEO Techniques To Improve Website Visibility In SERP
Pixlogix Infotech
 
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfUnlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Malak Abu Hammad
 
Energy Efficient Video Encoding for Cloud and Edge Computing Instances
Energy Efficient Video Encoding for Cloud and Edge Computing InstancesEnergy Efficient Video Encoding for Cloud and Edge Computing Instances
Energy Efficient Video Encoding for Cloud and Edge Computing Instances
Alpen-Adria-Universität
 
How to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptxHow to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptx
danishmna97
 
UI5 Controls simplified - UI5con2024 presentation
UI5 Controls simplified - UI5con2024 presentationUI5 Controls simplified - UI5con2024 presentation
UI5 Controls simplified - UI5con2024 presentation
Wouter Lemaire
 

Recently uploaded (20)

How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdfHow to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdf
 
Driving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success StoryDriving Business Innovation: Latest Generative AI Advancements & Success Story
Driving Business Innovation: Latest Generative AI Advancements & Success Story
 
OpenID AuthZEN Interop Read Out - Authorization
OpenID AuthZEN Interop Read Out - AuthorizationOpenID AuthZEN Interop Read Out - Authorization
OpenID AuthZEN Interop Read Out - Authorization
 
Choosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptxChoosing The Best AWS Service For Your Website + API.pptx
Choosing The Best AWS Service For Your Website + API.pptx
 
UiPath Test Automation using UiPath Test Suite series, part 6
UiPath Test Automation using UiPath Test Suite series, part 6UiPath Test Automation using UiPath Test Suite series, part 6
UiPath Test Automation using UiPath Test Suite series, part 6
 
Digital Marketing Trends in 2024 | Guide for Staying Ahead
Digital Marketing Trends in 2024 | Guide for Staying AheadDigital Marketing Trends in 2024 | Guide for Staying Ahead
Digital Marketing Trends in 2024 | Guide for Staying Ahead
 
5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides5th LF Energy Power Grid Model Meet-up Slides
5th LF Energy Power Grid Model Meet-up Slides
 
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
みなさんこんにちはこれ何文字まで入るの?40文字以下不可とか本当に意味わからないけどこれ限界文字数書いてないからマジでやばい文字数いけるんじゃないの?えこ...
 
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with SlackLet's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slack
 
HCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAUHCL Notes and Domino License Cost Reduction in the World of DLAU
HCL Notes and Domino License Cost Reduction in the World of DLAU
 
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?Cosa hanno in comune un mattoncino Lego e la backdoor XZ?
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?
 
Fueling AI with Great Data with Airbyte Webinar
Fueling AI with Great Data with Airbyte WebinarFueling AI with Great Data with Airbyte Webinar
Fueling AI with Great Data with Airbyte Webinar
 
Mariano G Tinti - Decoding SpaceX
Mariano G Tinti - Decoding SpaceXMariano G Tinti - Decoding SpaceX
Mariano G Tinti - Decoding SpaceX
 
Taking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdfTaking AI to the Next Level in Manufacturing.pdf
Taking AI to the Next Level in Manufacturing.pdf
 
Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024Introduction of Cybersecurity with OSS at Code Europe 2024
Introduction of Cybersecurity with OSS at Code Europe 2024
 
Best 20 SEO Techniques To Improve Website Visibility In SERP
Best 20 SEO Techniques To Improve Website Visibility In SERPBest 20 SEO Techniques To Improve Website Visibility In SERP
Best 20 SEO Techniques To Improve Website Visibility In SERP
 
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfUnlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdf
 
Energy Efficient Video Encoding for Cloud and Edge Computing Instances
Energy Efficient Video Encoding for Cloud and Edge Computing InstancesEnergy Efficient Video Encoding for Cloud and Edge Computing Instances
Energy Efficient Video Encoding for Cloud and Edge Computing Instances
 
How to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptxHow to Get CNIC Information System with Paksim Ga.pptx
How to Get CNIC Information System with Paksim Ga.pptx
 
UI5 Controls simplified - UI5con2024 presentation
UI5 Controls simplified - UI5con2024 presentationUI5 Controls simplified - UI5con2024 presentation
UI5 Controls simplified - UI5con2024 presentation
 

[WSO2 Open Banking & Security Forum Mexico 2019] Walking the Tightrope: Balancing Security and Convenience in Banking

  • 1. OPEN BANKING AND SECURITY FORUM 2019 Walking the Tightrope Balancing Security and Convenience in Digital Banking Johann Dilantha Nallathamby Associate Director / Solutions Architect @ WSO2 johann@wso2.com
  • 2. OPEN BANKING AND SECURITY FORUM 2019 Agenda • Identity Management in an API-Driven World • Identities in Open Banking • Onboarding and Authentication in Open Banking • Identity Propagation • Aggregators
  • 3. OPEN BANKING AND SECURITY FORUM 2019 Identity Management in an API-Driven World
  • 4. OPEN BANKING AND SECURITY FORUM 2019 API Management & Integration are key components in Open Banking
  • 5. OPEN BANKING AND SECURITY FORUM 2019 Identity Management is an inherent part of API Management & Integration
  • 6. OPEN BANKING AND SECURITY FORUM 2019 Decoupling API Runtime API Runtime +=
  • 7. OPEN BANKING AND SECURITY FORUM 2019 Consumer Identity Management is like walking the tightrope. Balancing convenience along with an awareness of security and privacy requirements has always been a dilemma for security and risk professionals. Consumer identity management can significantly detract from consumer experience if it is overly complicated; however, if it’s not strong, it doesn’t provide enough security.
  • 8. OPEN BANKING AND SECURITY FORUM 2019 Identities in Open Banking
  • 9. OPEN BANKING AND SECURITY FORUM 2019 API Store Application Developer Application Developers
  • 10. OPEN BANKING AND SECURITY FORUM 2019 Applications (TPPs) & Customers Mobile App Website API Gateway Core Banking Customer Application Integration Gateway
  • 11. OPEN BANKING AND SECURITY FORUM 2019 Identity Management for Application Developers
  • 12. OPEN BANKING AND SECURITY FORUM 2019 Onboarding
  • 13. OPEN BANKING AND SECURITY FORUM 2019 Self-registration
  • 14. OPEN BANKING AND SECURITY FORUM 2019 Federated Identity Management User Story Open Banking Implementation Entity (OBIE) mandates federated identity management with its directory for all TPPs. However the bank wishes to manage a profile-lite for its TPP users for offline communication purposes.Solution 1. Federated Login (mandatory) 2. Just-In-Time (JIT) account provisioning (optional) 3. Just-In-Time password provisioning (optional) 4. Ask required attributes (optional)
  • 15. OPEN BANKING AND SECURITY FORUM 2019 Authentication
  • 16. OPEN BANKING AND SECURITY FORUM 2019 Multi-factor Authentication
  • 17. OPEN BANKING AND SECURITY FORUM 2019 Federated Login Sending back linked identifier 5
  • 18. OPEN BANKING AND SECURITY FORUM 2019 Identity Management for Applications
  • 19. OPEN BANKING AND SECURITY FORUM 2019 Onboarding
  • 20. OPEN BANKING AND SECURITY FORUM 2019 API Store
  • 21. OPEN BANKING AND SECURITY FORUM 2019 Authentication
  • 22. OPEN BANKING AND SECURITY FORUM 2019 Delegated Access Control OAuth2 has become the defacto standard for API Security for consumer-facing APIs in an Open API Economy due its simplicity, developer friendliness and suitability across heterogenous technology platforms
  • 23. OPEN BANKING AND SECURITY FORUM 2019 Identity Management Banking Customers
  • 24. OPEN BANKING AND SECURITY FORUM 2019 Onboarding
  • 25. OPEN BANKING AND SECURITY FORUM 2019 Directory Integration SOAPRest
  • 26. OPEN BANKING AND SECURITY FORUM 2019 Federated Login User Story The bank has an existing in-house identity provider where the banks customer accounts are stored. The bank wishes to federated logins to the in-house identity provider rather than duplicating the account information and creating “identity silos”. 5 1 2 3 4 Sending back federated ID
  • 27. OPEN BANKING AND SECURITY FORUM 2019 Identity Proofing
  • 28. OPEN BANKING AND SECURITY FORUM 2019 Authentication
  • 29. OPEN BANKING AND SECURITY FORUM 2019 Brokered Authentication All consumer-facing applications in an Open API Economy are predominantly OpenID Connect based due to its relevance to OAuth2.
  • 30. OPEN BANKING AND SECURITY FORUM 2019 Strong Customer Authentication (SCA) Flows 1. Redirect 2. Decoupled 3. Embedded 4. App2App
  • 31. OPEN BANKING AND SECURITY FORUM 2019 Adaptive Authentication Dynamic, Context-aware, Multi-factor Authentication
  • 32. OPEN BANKING AND SECURITY FORUM 2019 Example: Level of Assurance (LoA) View balance Fund transfer
  • 33. OPEN BANKING AND SECURITY FORUM 2019 Example: Region Based Step-up Authentication
  • 34. OPEN BANKING AND SECURITY FORUM 2019 Example: Device based Step-up Authentication Trusted / Untrusted / New
  • 35. OPEN BANKING AND SECURITY FORUM 2019 Example: Risk based Step-up Authentication Examples 1. Login patterns (time of the day, day of the week, etc.) 2. Last successful login time 3. Typing speed 4. Consecutive incorrect password attempts Get Risk Score
  • 36. OPEN BANKING AND SECURITY FORUM 2019 Analyzing Login Events in a Time Window
  • 37. OPEN BANKING AND SECURITY FORUM 2019 Steam Processor Editor
  • 38. OPEN BANKING AND SECURITY FORUM 2019 Steam Processor Designer
  • 39. OPEN BANKING AND SECURITY FORUM 2019 Identity Propagation
  • 40. OPEN BANKING AND SECURITY FORUM 2019 Flowing Claims to Downstream Resources Mobile App Website API Gateway Core Banking Identity Propagation Integration Gateway
  • 41. OPEN BANKING AND SECURITY FORUM 2019 Motivation 1. Positive identification of the customer and application 2. Control access to fine-grained backend services based on entitlements of the customer and application 3. Filter data in the API provider’s response according to data entitlements of customer and application 4. Audit and keep records of data access
  • 42. OPEN BANKING AND SECURITY FORUM 2019 Trusted Subsystem • Most popular security pattern to propagate identities • More information: https://medium.com/@johann_nallathamby/identity-propagation-in-a-gateway-architecture-e898b9eec5ca
  • 43. OPEN BANKING AND SECURITY FORUM 2019 Trusted Subsystem Security Patterns Mobile App Website API Gateway Core Banking Integration Gateway Certificate Authority <trust> • Trusted Subsystem Generated Identity Tokens <JWT> <JWT>
  • 44. OPEN BANKING AND SECURITY FORUM 2019 Trusted Subsystem Security Patterns Mobile App Website API Gateway Core Banking Integration Gateway <trust> • 3rd Party Generated Identity Tokens <OAuth2 Token Introspection> <JWT> <JWT>
  • 45. OPEN BANKING AND SECURITY FORUM 2019 Aggregators
  • 46. OPEN BANKING AND SECURITY FORUM 2019 Dynamic routing to Bank API Providers Mobile App Website API Gateway Bank B Integration Gateway Bank A Bank A IdP Bank B IdP 1 2 3 4 5 Self-contained access token <OpenID Connect> <identity federation> <API call> <internal service call> <backend call> {“random”:“abcd…1234”,“realm”:“Bank-A”}
  • 47. OPEN BANKING AND SECURITY FORUM 2019 THANK YOU wso2.com