This deck will cover identity Management in an API-Driven World, identities in Open Banking, onboarding and authentication in Open Banking, identity propagation, and Aggregators
[BancNet Technical Update 2019] Open Banking Bringing you closer to Digital ...WSO2
Open Banking is on its way towards global adoption and Asia is just getting started. Open API Banking has become such a vital component of catering to the future of banking that all banks are gearing up for it with or without a national regulation in place. This session provides insight into why open banking is THE driver for digital transformation in financial services. This deck covers the current challenges of the Philippine Banking industry, how to craft an Open Banking strategy to overcome those challenges, a cross border transfer of experiences: What EU and UK banks have taught us, and why open banking and digital transformation belong in the same sentence.
[WSO2 Open Banking & Security Forum Mexico 2019] Open Banking in Mexico: How ...WSO2
This deck explores the need for open banking in banks, how it helps cater to millennials, the key requirements of open banking, and how it will drive you to success.
apidays LIVE LONDON - Open Banking from incumbent bank point of view - succes...apidays
apidays LIVE LONDON - The Road to Embedded Finance, Banking and Insurance with APIs
Open Banking from incumbent bank point of view - successes models and also failures
Martin Medek, Head of Open Banking at Česká spořitelna, a.s
apidays LIVE India - Standardising financial account aggregation by Vamsi Mad...apidays
apidays LIVE India 2021 - Connecting 1.3 billion digital innovators
May 20, 2021
Standardising financial account aggregation
Vamsi Madhav, Head of Products and Standards at DigiSahamati
The Road to Intelligent Authentication JourneysForgeRock
The pressure is on. You need to build a great customer login experience that is secure but doesn’t burden your customers with complicated password requirements. But wait, there’s more – you also need to personalize the login experience and provide metrics back to the business. Legacy authentication has you boxed in. What are you to do? Solutions like multi-factor authentication (MFA) are replacing traditional login methods but its limitations are often static and offer up inconsistent customer experiences, leading to abandonment. Organizations need an intelligent authentication approach that strikes a balance between usability, security, and customer choice. In this webcast you will learn what Intelligent Authentication is and how it enables you to: Easily configure, measure, and adjust login journeys using digital signals including device, contextual, behavioral, user choice, and risk-based factors Leverage user login analytics to increase user adoption rates, and improve the customer experience Automatically redirect suspicious users for further monitoring Quickly consume out-of-the-box authenticators, utilize existing authenticators, and integrate with cyber security solutions — all in one place
The document provides an overview of the fintech industry in the Philippines in 2020. It notes that the Philippines has a population of over 100 million, with over half owning smartphones. The fintech sector in the Philippines was one of the few bright spots during an economic contraction due to the COVID-19 pandemic, experiencing exponential growth. The report serves as an essential reference on the development of fintech in the Philippines during this landmark period.
Falabella implemented a cybersecurity solution from VUTM to increase security levels across its digital operations in retail, banking, travel, and insurance. The solution included VUTM App & Cloud Server for multifactor authentication, VUTM AES for password and device management, and VUTM Fraud Analysis for user profiling and fraud detection. VUTM's solutions helped Falabella strengthen authentication and protection of clients' confidential information.
[BancNet Technical Update 2019] Open Banking Bringing you closer to Digital ...WSO2
Open Banking is on its way towards global adoption and Asia is just getting started. Open API Banking has become such a vital component of catering to the future of banking that all banks are gearing up for it with or without a national regulation in place. This session provides insight into why open banking is THE driver for digital transformation in financial services. This deck covers the current challenges of the Philippine Banking industry, how to craft an Open Banking strategy to overcome those challenges, a cross border transfer of experiences: What EU and UK banks have taught us, and why open banking and digital transformation belong in the same sentence.
[WSO2 Open Banking & Security Forum Mexico 2019] Open Banking in Mexico: How ...WSO2
This deck explores the need for open banking in banks, how it helps cater to millennials, the key requirements of open banking, and how it will drive you to success.
apidays LIVE LONDON - Open Banking from incumbent bank point of view - succes...apidays
apidays LIVE LONDON - The Road to Embedded Finance, Banking and Insurance with APIs
Open Banking from incumbent bank point of view - successes models and also failures
Martin Medek, Head of Open Banking at Česká spořitelna, a.s
apidays LIVE India - Standardising financial account aggregation by Vamsi Mad...apidays
apidays LIVE India 2021 - Connecting 1.3 billion digital innovators
May 20, 2021
Standardising financial account aggregation
Vamsi Madhav, Head of Products and Standards at DigiSahamati
The Road to Intelligent Authentication JourneysForgeRock
The pressure is on. You need to build a great customer login experience that is secure but doesn’t burden your customers with complicated password requirements. But wait, there’s more – you also need to personalize the login experience and provide metrics back to the business. Legacy authentication has you boxed in. What are you to do? Solutions like multi-factor authentication (MFA) are replacing traditional login methods but its limitations are often static and offer up inconsistent customer experiences, leading to abandonment. Organizations need an intelligent authentication approach that strikes a balance between usability, security, and customer choice. In this webcast you will learn what Intelligent Authentication is and how it enables you to: Easily configure, measure, and adjust login journeys using digital signals including device, contextual, behavioral, user choice, and risk-based factors Leverage user login analytics to increase user adoption rates, and improve the customer experience Automatically redirect suspicious users for further monitoring Quickly consume out-of-the-box authenticators, utilize existing authenticators, and integrate with cyber security solutions — all in one place
The document provides an overview of the fintech industry in the Philippines in 2020. It notes that the Philippines has a population of over 100 million, with over half owning smartphones. The fintech sector in the Philippines was one of the few bright spots during an economic contraction due to the COVID-19 pandemic, experiencing exponential growth. The report serves as an essential reference on the development of fintech in the Philippines during this landmark period.
Falabella implemented a cybersecurity solution from VUTM to increase security levels across its digital operations in retail, banking, travel, and insurance. The solution included VUTM App & Cloud Server for multifactor authentication, VUTM AES for password and device management, and VUTM Fraud Analysis for user profiling and fraud detection. VUTM's solutions helped Falabella strengthen authentication and protection of clients' confidential information.
Wilobank implemented a new onboarding solution using VUTM's authentication, onboarding, and behavior analysis framework. A mobile application was created allowing customers to register using VUTM authentication. This provided a flexible and adaptable solution to market requirements, offering an innovative and simple experience while reducing fraud risk.
The document discusses a mobile payment solution launched by several leading banks based on G+D Mobile Security's Convego Hub solution. The solution offers a user-friendly experience, strong security through brand tokenization, and compliance with data regulations. Convego Hub implements an off-the-shelf solution supporting various payment technologies and brands through state-of-the-art mobile security certified by global payment organizations. The solution provides services for physical and digital payments using tokenization and has millions of active users worldwide.
A Telco and End-user Perspective on the Authentication JourneyFIDO Alliance
This document discusses authentication from a telco and end-user perspective. It notes that end-users want quick and simple access to digital services from their mobile devices without extra hardware tokens, usernames/passwords, or additional steps. SMS-based one-time passwords are widely used as an entry-level form of two-factor authentication (2FA) and offer improved security over no 2FA, but have some challenges. As technology changes rapidly, more advanced authentication capabilities are available from telcos that can provide strong customer authentication at scale in a layered approach. Telcos play a key role in offering authentication products from entry-level to more advanced options as part of the larger authentication ecosystem.
Strong authentication methods are changing to meet new user expectations of simplicity, security and convenience. Loqr provides a platform that uses behavioral analytics and biometrics to securely authenticate users with a single API, addressing increasing threats and regulatory compliance needs. Their experienced team has decades of relevant experience developing secure authentication solutions for financial institutions and governments.
apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...apidays
- Open banking allows access to account data and payment initiation, but embedded finance allows much more like issuing cards and accounts, currency conversion, and multiple payment schemes.
- Railsbank aims to democratize finance by allowing any business to embed financial services into their customer experience with just 5 lines of code through their API.
- They provide the infrastructure and manage the complexity and risk of running financial services so businesses can focus on their products and customers. This allows for innovations like insurance that acts like a bank account, a neo bank using gold deposits, and salary advancing to help with debt.
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...apidays
The document discusses the relationship between open banking regulation and financial technology (fintech) companies. It provides a timeline of key events in fintech innovation and open banking regulation, including the EU's Payment Services Directive 2 (PSD2) and its implementation in various countries. The document outlines common elements of open banking frameworks, such as standardized APIs and access for third parties to payment and account data with user consent. It presents a reference architecture for open banking consisting of API management, identity management, integration, and legacy banking layers.
Prisma Medios de Pago is a banking company in Argentina that partnered with VUTM to implement a biometric authentication solution for its digital onboarding process. The solution uses facial, voice, and fingerprint recognition powered by Microsoft Azure and Cognitive Services to allow users to perform remote transactions safely and with less friction. Prisma chose VUTM's solution because it focuses on empowering users through secure and frictionless transactions, allowing the bank to expand its technological services to other industries. The implemented biometric authentication system manages the user lifecycle and allows remote secure authentication from any device.
BUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENTForgeRock
This document discusses identity relationship management (IRM) and its applications in both enterprise and consumer contexts. IRM aims to strengthen authentication by leveraging relationships between authenticated entities like users, devices, locations, and organizations. Examples discussed include 3D Secure for online payments, UK's Assure identity program, and Belgium's government portal. The document argues that while consumer IRM may involve larger scales, security principles are the same as in enterprises, including use of standards, trusted identity providers, and privacy protections. Relationships can enhance security, enable new services, and strengthen customer ties.
Originally presented during the Arabnet Beirut Banking Innovation Day (21/2/2017).
This presentation provides an overview of the different drivers & stakeholders shaping the FinTech revolution.
GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...Ubisecure
eIDAS - Mobile Connect Pilot: How To Combine Cross-border eID Recognition With Convenience For Users And Online Services. GSMA presentation slides from Ubisecure's IAMwithUBI Nordic IAM event May 2018
1) Warply is a mobile marketing company that provides services like real-time audience targeting, campaign management, loyalty programs, and mobile payments.
2) They collect various types of customer data from multiple sources that can be used for audience targeting and personalization.
3) Warply emphasizes using emerging technologies like chatbots, artificial intelligence, and mobile experiences to improve the customer experience for banking and retail clients.
This document outlines a presentation on digital identity and self-sovereign identity (SSI) in the post-Covid world. The presentation discusses how the pandemic has increased digital payments and online activity. It then covers current challenges around digital identity theft, consent management under PSD2 and GDPR. The bulk of the presentation introduces SSI as a portable, lifetime digital identity model not dependent on centralized authorities. It explains the underlying decentralized identifiers (DIDs) and verifiable credentials of SSI. Practical uses of SSI are demonstrated for applying for jobs and loans. Potential benefits are seen for identity verification, preventing phishing, and improving user onboarding processes.
Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...Idan Tohami
The purpose of this webinar is to help Financial Institutions understand the implications of financial crime and fraud prevention, and get ready to review and upgrade their systems accordingly where required.
Topics covered:
-Overview of GDPR and PSD2 regulations with respect to Financial Crime
-Implications of each the regulations on Fraud and Financial Crime (FFC)
-The challenges and opportunities offered by those regulations
-Which steps should Financial Institutions take to mitigate the cost of FFC
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...FinTechLabs.io
RAiDiAM is a consulting firm focused on identity and regulatory challenges posed by open banking and PSD2. It provides business and technical consulting services using a modular and scalable identity architecture. RAiDiAM has experience delivering services to open banking organizations, financial institutions, and software vendors. The document discusses the changing landscape in financial services due to open banking and data privacy regulations in Europe and globally. It outlines the various actors in the ecosystem and proposes a trust framework using a hub-and-spoke topology to help establish identity and authorization between parties. The Open Banking Implementation Entity in the UK established a trust framework and directory based on this approach to facilitate standard interfaces and integration between authorized banks and third parties.
Spellpoint - Securing Access for MicroservicesUbisecure
Spellpoint presentation slides from Ubisecure's IAMwithUBI Nordic IAM event May 2018. How Customer IAM (CIAM) principles and technology can be applied to identities for microservices to provide authentication and authorization of APIs.
The journey from open banking to open finance+. The evolution of open banking based on API as of now and where it could go from here. Risks and opportunities for market participants.
apidays LIVE LONDON - Running an open banking platform for strategic partners...apidays
apidays LIVE LONDON - The Road to Embedded Finance, Banking and Insurance with APIs
Running an open banking platform for strategic partnerships
Hector Arias, Head of Open Banking Operations at BBVA
Inside Security - Strong Authentication with SmartphonesUbisecure
Strong Authentication with Smartphones - Convenience, capabilities, compliance. Inside Security presentation slides from Ubisecure's IAMwithUBI Nordic IAM event May 2018
Aditro - IAM as part of Cloud Business strategyUbisecure
Identity & Access Management (IAM) as a part of Cloud Business strategy and information security - Aditro presentation slides from Ubisecure's IAMwithUBI Nordic IAM event May 2018
[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...WSO2
This deck will illustrate why IAM should be top of mind for your enterprise’s success, and how you can leverage it in your transformation journey.
Join us at a city near you to learn how to achieve API-driven integration agility - https://wso2.com/integration-summits-2019/
Wilobank implemented a new onboarding solution using VUTM's authentication, onboarding, and behavior analysis framework. A mobile application was created allowing customers to register using VUTM authentication. This provided a flexible and adaptable solution to market requirements, offering an innovative and simple experience while reducing fraud risk.
The document discusses a mobile payment solution launched by several leading banks based on G+D Mobile Security's Convego Hub solution. The solution offers a user-friendly experience, strong security through brand tokenization, and compliance with data regulations. Convego Hub implements an off-the-shelf solution supporting various payment technologies and brands through state-of-the-art mobile security certified by global payment organizations. The solution provides services for physical and digital payments using tokenization and has millions of active users worldwide.
A Telco and End-user Perspective on the Authentication JourneyFIDO Alliance
This document discusses authentication from a telco and end-user perspective. It notes that end-users want quick and simple access to digital services from their mobile devices without extra hardware tokens, usernames/passwords, or additional steps. SMS-based one-time passwords are widely used as an entry-level form of two-factor authentication (2FA) and offer improved security over no 2FA, but have some challenges. As technology changes rapidly, more advanced authentication capabilities are available from telcos that can provide strong customer authentication at scale in a layered approach. Telcos play a key role in offering authentication products from entry-level to more advanced options as part of the larger authentication ecosystem.
Strong authentication methods are changing to meet new user expectations of simplicity, security and convenience. Loqr provides a platform that uses behavioral analytics and biometrics to securely authenticate users with a single API, addressing increasing threats and regulatory compliance needs. Their experienced team has decades of relevant experience developing secure authentication solutions for financial institutions and governments.
apidays LIVE LONDON - Revitalising the core with Banking-as-a-Service by Nige...apidays
- Open banking allows access to account data and payment initiation, but embedded finance allows much more like issuing cards and accounts, currency conversion, and multiple payment schemes.
- Railsbank aims to democratize finance by allowing any business to embed financial services into their customer experience with just 5 lines of code through their API.
- They provide the infrastructure and manage the complexity and risk of running financial services so businesses can focus on their products and customers. This allows for innovations like insurance that acts like a bank account, a neo bank using gold deposits, and salary advancing to help with debt.
APIdays Singapore 2019 - Global Open Banking Frameworks and Standards: Luca F...apidays
The document discusses the relationship between open banking regulation and financial technology (fintech) companies. It provides a timeline of key events in fintech innovation and open banking regulation, including the EU's Payment Services Directive 2 (PSD2) and its implementation in various countries. The document outlines common elements of open banking frameworks, such as standardized APIs and access for third parties to payment and account data with user consent. It presents a reference architecture for open banking consisting of API management, identity management, integration, and legacy banking layers.
Prisma Medios de Pago is a banking company in Argentina that partnered with VUTM to implement a biometric authentication solution for its digital onboarding process. The solution uses facial, voice, and fingerprint recognition powered by Microsoft Azure and Cognitive Services to allow users to perform remote transactions safely and with less friction. Prisma chose VUTM's solution because it focuses on empowering users through secure and frictionless transactions, allowing the bank to expand its technological services to other industries. The implemented biometric authentication system manages the user lifecycle and allows remote secure authentication from any device.
BUSINESS CASES AND IDENTITY RELATIONSHIP MANAGEMENTForgeRock
This document discusses identity relationship management (IRM) and its applications in both enterprise and consumer contexts. IRM aims to strengthen authentication by leveraging relationships between authenticated entities like users, devices, locations, and organizations. Examples discussed include 3D Secure for online payments, UK's Assure identity program, and Belgium's government portal. The document argues that while consumer IRM may involve larger scales, security principles are the same as in enterprises, including use of standards, trusted identity providers, and privacy protections. Relationships can enhance security, enable new services, and strengthen customer ties.
Originally presented during the Arabnet Beirut Banking Innovation Day (21/2/2017).
This presentation provides an overview of the different drivers & stakeholders shaping the FinTech revolution.
GSMA - How To Combine Cross-border eID Recognition With Convenience For Users...Ubisecure
eIDAS - Mobile Connect Pilot: How To Combine Cross-border eID Recognition With Convenience For Users And Online Services. GSMA presentation slides from Ubisecure's IAMwithUBI Nordic IAM event May 2018
1) Warply is a mobile marketing company that provides services like real-time audience targeting, campaign management, loyalty programs, and mobile payments.
2) They collect various types of customer data from multiple sources that can be used for audience targeting and personalization.
3) Warply emphasizes using emerging technologies like chatbots, artificial intelligence, and mobile experiences to improve the customer experience for banking and retail clients.
This document outlines a presentation on digital identity and self-sovereign identity (SSI) in the post-Covid world. The presentation discusses how the pandemic has increased digital payments and online activity. It then covers current challenges around digital identity theft, consent management under PSD2 and GDPR. The bulk of the presentation introduces SSI as a portable, lifetime digital identity model not dependent on centralized authorities. It explains the underlying decentralized identifiers (DIDs) and verifiable credentials of SSI. Practical uses of SSI are demonstrated for applying for jobs and loans. Potential benefits are seen for identity verification, preventing phishing, and improving user onboarding processes.
Open Banking / PSD2 & GDPR Regulations and How They Are Changing Fraud & Fina...Idan Tohami
The purpose of this webinar is to help Financial Institutions understand the implications of financial crime and fraud prevention, and get ready to review and upgrade their systems accordingly where required.
Topics covered:
-Overview of GDPR and PSD2 regulations with respect to Financial Crime
-Implications of each the regulations on Fraud and Financial Crime (FFC)
-The challenges and opportunities offered by those regulations
-Which steps should Financial Institutions take to mitigate the cost of FFC
Trust Frameworks and Open Banking #fapisum - Japan/UK Open Banking and APIs S...FinTechLabs.io
RAiDiAM is a consulting firm focused on identity and regulatory challenges posed by open banking and PSD2. It provides business and technical consulting services using a modular and scalable identity architecture. RAiDiAM has experience delivering services to open banking organizations, financial institutions, and software vendors. The document discusses the changing landscape in financial services due to open banking and data privacy regulations in Europe and globally. It outlines the various actors in the ecosystem and proposes a trust framework using a hub-and-spoke topology to help establish identity and authorization between parties. The Open Banking Implementation Entity in the UK established a trust framework and directory based on this approach to facilitate standard interfaces and integration between authorized banks and third parties.
Spellpoint - Securing Access for MicroservicesUbisecure
Spellpoint presentation slides from Ubisecure's IAMwithUBI Nordic IAM event May 2018. How Customer IAM (CIAM) principles and technology can be applied to identities for microservices to provide authentication and authorization of APIs.
The journey from open banking to open finance+. The evolution of open banking based on API as of now and where it could go from here. Risks and opportunities for market participants.
apidays LIVE LONDON - Running an open banking platform for strategic partners...apidays
apidays LIVE LONDON - The Road to Embedded Finance, Banking and Insurance with APIs
Running an open banking platform for strategic partnerships
Hector Arias, Head of Open Banking Operations at BBVA
Inside Security - Strong Authentication with SmartphonesUbisecure
Strong Authentication with Smartphones - Convenience, capabilities, compliance. Inside Security presentation slides from Ubisecure's IAMwithUBI Nordic IAM event May 2018
Aditro - IAM as part of Cloud Business strategyUbisecure
Identity & Access Management (IAM) as a part of Cloud Business strategy and information security - Aditro presentation slides from Ubisecure's IAMwithUBI Nordic IAM event May 2018
[WSO2 Integration Summit Madrid 2019] Identity and Access Management in an AP...WSO2
This deck will illustrate why IAM should be top of mind for your enterprise’s success, and how you can leverage it in your transformation journey.
Join us at a city near you to learn how to achieve API-driven integration agility - https://wso2.com/integration-summits-2019/
[WSO2 Open Banking & Security Forum Mexico 2019] API-Driven WorldWSO2
This deck discusses how APIs are touching every facet of our society and the underlying trends that are going to generate nearly 1 billion APIs in the coming years. Open Banking is now an API-led technology trend.
[WSO2 Integration Summit Stuttgart 2019] Identity and Access Management in an...WSO2
This deck will illustrate why IAM should be top of mind for your enterprise’s success, and how you can leverage it in your transformation journey.
Join us at a city near you to learn how to achieve API-driven integration agility - https://wso2.com/integration-summits-2019/
WSO2 - Yenlo Integration Summit Stuttgart 15 May 2019 - IAM in an API Driven ...Yenlo
This document summarizes Pubudu Gunatilaka's presentation at the Integration Summit 2019 on identity and access management in an API-driven world. The presentation discusses how user onboarding and authentication need to adapt to the API-driven world. It notes passwords are insecure and discusses multi-factor authentication as a solution but one with usability issues. It proposes adaptive authentication, where authentication steps are dynamic based on context like the request, user attributes, behaviors and risk scores to balance security and usability. The WSO2 Identity Server is presented as offering static, request-based, user-based and adaptive authentication flows to enable these adaptive authentication techniques.
This deck covers how APIs are touching every facet of our society and the underlying trends that are going to generate nearly 1 billion APIs in the coming years.
[WSO2 Integration Summit Singapore 2019] Transforming Your Business through APIsWSO2
This deck explores how businesses can gain from APIs and the process of creating an API Marketplace.
Join us at a city near you to learn how to achieve API-driven integration agility. - https://wso2.com/integration-summits-2019/
[WSO2 Integration Summit London 2019] The API-driven WorldWSO2
WSO2 held an Integration Summit in 2019 to discuss powering the world with APIs and integration. The summit covered how WSO2 has over 500 customers in 65 countries using their open source integration platform. It also discussed how digital architectures are becoming more distributed and reliant on APIs for integration, and how WSO2 provides identity management, API management, and enterprise integration products to enable organizations to connect systems and leverage APIs.
[WSO2 Integration Summit Singapore 2019] The API-driven WorldWSO2
This deck discusses how APIs are touching every facet of our society and the underlying trends that are going to generate nearly 1 billion APIs in the coming years. All digital transformation is now API-driven and integration technologies underpin their evolution.
Join us at a city near you to learn how to achieve API-driven integration agility. - https://wso2.com/integration-summits-2019/
In this deck, Tyler explains how APIs are touching every facet of our society and the underlying trends that are going to generate nearly 1 billion APIs in the coming years. All digital transformation is now API-driven and integration technologies underpin their evolution.
Want to attend a WSO2 Integration Summit? Find us at a city near you - https://wso2.com/integration-summits-2019/
[WSO2 Integration Summit San Francisco 2019] The API-driven WorldWSO2
APIs and integration is suddenly the hottest sector in enterprise software!
This deck will discuss how APIs are touching every facet of our society and the underlying trends that are going to generate nearly 1 billion APIs in the coming years. All digital transformation is now API-driven and integration technologies underpin their evolution.
As the world becomes digitally-native, how will the role of enterprise architecture shift? How do we leverage cloud native and agility initiatives?
This deck discusses,
- The impact APIs are having on digital transformation
- WSO2's roadmap for API-driven initiatives
- A reference architecture for agility
- A new agility methodology for integration
- How microservices will pervade integration products
- Our commitment and role of Ballerina (cloud native programming language)
- New channel and reseller programs for partners
Powering an API-driven world | Yenlo - WSO2 Integration Summit 2019, San Fran...Yenlo
The WSO2 Integration summit was opened by Shevan Goonetilleke, President and Chief Operating Officer at WSO2. He explained in a simple phrase what WSO2 is all about: “Building the technology to connect systems and expose as APIs and secure integrations”. That we are in an API-driven world is highlighted by the fact that 25% to 40% of all internet traffic consist of APIs being consumed by mobile apps and web-based applications.
IRJET- Graphical Secret Code in Internet Banking for Improved Security Transa...IRJET Journal
This document summarizes a research paper that proposes a new security method for internet banking transactions using graphical secret codes. The proposed method generates a unique ID for each currency unit during a transaction to allow tracking of currency movement. It uses encryption, pixel identification and multiple authentication factors for secure login. This provides improved security over traditional password-based authentication by making transactions and login credentials more difficult to steal or guess. The method aims to reduce fraud, hacking vulnerabilities and the spread of untaxed "black money".
Disrupt or be disrupted – Using secure APIs to drive digital transformationRogue Wave Software
In today’s economy, companies of all kinds are looking to disrupt their own and other industries across everything from banking through logistics and retail. Disruption and innovation are typically built on the back of a digital transformation strategy; disrupting a market is all about finding new ways of servicing customers through innovative channels or approaches. APIs have become the foundation of disruption, innovation, and digital transformation.
This presentation will help you understand the necessary components of a well-constructed API strategy, with particular attention paid to security.
APIdays Singapore 2019 - Securing Value in API Ecosystems, Ajay Biyani, Head ...apidays
The document discusses how ForgeRock can help enterprises secure value in an API connected ecosystem by building trust for consumers through convenience, choice, and visibility while delivering personalized experiences. Standardized APIs offer opportunities for enterprises to extend capabilities and meet customer needs across segments, while connecting customers seamlessly and safely to partner offerings can enhance customer experience and create new revenue streams. ForgeRock supports securing the value of API ecosystems by addressing authentication, authorization, consent, and API security across internal and external sources through a comprehensive identity platform.
WSO2 - Yenlo Integration Summit Stuttgart May 15 2019 - Open Banking APIs and...Yenlo
This document summarizes Dirk Köhler's presentation at the Hanseatic Bank Integration Summit 2019 on their journey implementing PSD2 and Open Banking standards. It discusses how they used the WSO2 Open Banking platform to create a consistent API architecture with standardized interfaces. This helped enable easy onboarding of third-party providers and new business opportunities. Some challenges included addressing security concerns in financial services and adapting to their previously siloed organizational structure. Next steps include expanding their API strategy to develop new strategic partnerships and products.
apidays London 2022 - Collaborative Governance, Arnab Mitra (BIAN) & Frank Ki...apidays
apidays London 2022 - The Path from Open Banking to Embedded Finance
October 26 & 27, 2022
Collaborative Governance : Open Banking adoption and innovative Fintech
Arnab Mitra, Program Manager at BIAN (Banking Industry Architecture Network)
Frank Kilcommins, API Technical Evangelist at SmartBear
------
Check out our conferences at https://www.apidays.global/
Do you want to sponsor or talk at one of our conferences?
https://apidays.typeform.com/to/ILJeAaV8
Learn more on APIscene, the global media made by the community for the community:
https://www.apiscene.io
Explore the API ecosystem with the API Landscape:
https://apilandscape.apiscene.io/
Deep dive into the API industry with our reports:
https://www.apidays.global/industry-reports/
Subscribe to our global newsletter:
https://apidays.typeform.com/to/i1MPEW
Similar to [WSO2 Open Banking & Security Forum Mexico 2019] Walking the Tightrope: Balancing Security and Convenience in Banking (20)
Accelerate Enterprise Software Engineering with PlatformlessWSO2
Key takeaways:
Challenges of building platforms and the benefits of platformless.
Key principles of platformless, including API-first, cloud-native middleware, platform engineering, and developer experience.
How Choreo enables the platformless experience.
How key concepts like application architecture, domain-driven design, zero trust, and cell-based architecture are inherently a part of Choreo.
Demo of an end-to-end app built and deployed on Choreo.
Less Is More: Utilizing Ballerina to Architect a Cloud Data PlatformWSO2
At its core, the challenge of managing Human Resources data is an integration challenge: estimates range from 2-3 HR systems in use at a typical SMB, up to a few dozen systems implemented amongst enterprise HR departments, and these systems seldom integrate seamlessly between themselves. Providing a multi-tenant, cloud-native solution to integrate these hundreds of HR-related systems, normalize their disparate data models and then render that consolidated information for stakeholder decision making has been a substantial undertaking, but one significantly eased by leveraging Ballerina. In this session, we’ll cover:
The overall software architecture for VHR’s Cloud Data Platform
Critical decision points leading to adoption of Ballerina for the CDP
Ballerina’s role in multiple evolutionary steps to the current architecture
Roadmap for the CDP architecture and plans for Ballerina
WSO2’s partnership in bringing continual success for the CD
The integration landscape is changing rapidly with the introduction of technologies like GraphQL, gRPC, stream processing, iPaaS, and platformless. However, not all existing applications and industries can keep up with these new technologies. Certain industries, like manufacturing, logistics, and finance, still rely on well-established EDI-based message formats. Some applications use XML or CSV with file-based communications, while others have strict on premises deployment requirements. This talk focuses on how Ballerina's built-in integration capabilities can bridge the gap between "old" and "new" technologies, modernizing enterprise applications without disrupting business operations.
Platformless Horizons for Digital AdaptabilityWSO2
In this keynote, Asanka Abeysinghe, CTO,WSO2 will explore the shift towards platformless technology ecosystems and their importance in driving digital adaptability and innovation. We will discuss strategies for leveraging decentralized architectures and integrating diverse technologies, with a focus on building resilient, flexible, and future-ready IT infrastructures. We will also highlight WSO2's roadmap, emphasizing our commitment to supporting this transformative journey with our evolving product suite.
Quantum computers are rapidly evolving and are promising significant advantages in domains like machine learning or optimization, to name but a few areas. In this keynote we sketch the underpinnings of quantum computing, show some of the inherent advantages, highlight some application areas, and show how quantum applications are built.
How to Interpret Trends in the Kalyan Rajdhani Mix Chart.pdfChart Kalyan
A Mix Chart displays historical data of numbers in a graphical or tabular form. The Kalyan Rajdhani Mix Chart specifically shows the results of a sequence of numbers over different periods.
Driving Business Innovation: Latest Generative AI Advancements & Success StorySafe Software
Are you ready to revolutionize how you handle data? Join us for a webinar where we’ll bring you up to speed with the latest advancements in Generative AI technology and discover how leveraging FME with tools from giants like Google Gemini, Amazon, and Microsoft OpenAI can supercharge your workflow efficiency.
During the hour, we’ll take you through:
Guest Speaker Segment with Hannah Barrington: Dive into the world of dynamic real estate marketing with Hannah, the Marketing Manager at Workspace Group. Hear firsthand how their team generates engaging descriptions for thousands of office units by integrating diverse data sources—from PDF floorplans to web pages—using FME transformers, like OpenAIVisionConnector and AnthropicVisionConnector. This use case will show you how GenAI can streamline content creation for marketing across the board.
Ollama Use Case: Learn how Scenario Specialist Dmitri Bagh has utilized Ollama within FME to input data, create custom models, and enhance security protocols. This segment will include demos to illustrate the full capabilities of FME in AI-driven processes.
Custom AI Models: Discover how to leverage FME to build personalized AI models using your data. Whether it’s populating a model with local data for added security or integrating public AI tools, find out how FME facilitates a versatile and secure approach to AI.
We’ll wrap up with a live Q&A session where you can engage with our experts on your specific use cases, and learn more about optimizing your data workflows with AI.
This webinar is ideal for professionals seeking to harness the power of AI within their data management systems while ensuring high levels of customization and security. Whether you're a novice or an expert, gain actionable insights and strategies to elevate your data processes. Join us to see how FME and AI can revolutionize how you work with data!
OpenID AuthZEN Interop Read Out - AuthorizationDavid Brossard
During Identiverse 2024 and EIC 2024, members of the OpenID AuthZEN WG got together and demoed their authorization endpoints conforming to the AuthZEN API
Have you ever been confused by the myriad of choices offered by AWS for hosting a website or an API?
Lambda, Elastic Beanstalk, Lightsail, Amplify, S3 (and more!) can each host websites + APIs. But which one should we choose?
Which one is cheapest? Which one is fastest? Which one will scale to meet our needs?
Join me in this session as we dive into each AWS hosting service to determine which one is best for your scenario and explain why!
UiPath Test Automation using UiPath Test Suite series, part 6DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 6. In this session, we will cover Test Automation with generative AI and Open AI.
UiPath Test Automation with generative AI and Open AI webinar offers an in-depth exploration of leveraging cutting-edge technologies for test automation within the UiPath platform. Attendees will delve into the integration of generative AI, a test automation solution, with Open AI advanced natural language processing capabilities.
Throughout the session, participants will discover how this synergy empowers testers to automate repetitive tasks, enhance testing accuracy, and expedite the software testing life cycle. Topics covered include the seamless integration process, practical use cases, and the benefits of harnessing AI-driven automation for UiPath testing initiatives. By attending this webinar, testers, and automation professionals can gain valuable insights into harnessing the power of AI to optimize their test automation workflows within the UiPath ecosystem, ultimately driving efficiency and quality in software development processes.
What will you get from this session?
1. Insights into integrating generative AI.
2. Understanding how this integration enhances test automation within the UiPath platform
3. Practical demonstrations
4. Exploration of real-world use cases illustrating the benefits of AI-driven test automation for UiPath
Topics covered:
What is generative AI
Test Automation with generative AI and Open AI.
UiPath integration with generative AI
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Digital Marketing Trends in 2024 | Guide for Staying AheadWask
https://www.wask.co/ebooks/digital-marketing-trends-in-2024
Feeling lost in the digital marketing whirlwind of 2024? Technology is changing, consumer habits are evolving, and staying ahead of the curve feels like a never-ending pursuit. This e-book is your compass. Dive into actionable insights to handle the complexities of modern marketing. From hyper-personalization to the power of user-generated content, learn how to build long-term relationships with your audience and unlock the secrets to success in the ever-shifting digital landscape.
5th LF Energy Power Grid Model Meet-up SlidesDanBrown980551
5th Power Grid Model Meet-up
It is with great pleasure that we extend to you an invitation to the 5th Power Grid Model Meet-up, scheduled for 6th June 2024. This event will adopt a hybrid format, allowing participants to join us either through an online Mircosoft Teams session or in person at TU/e located at Den Dolech 2, Eindhoven, Netherlands. The meet-up will be hosted by Eindhoven University of Technology (TU/e), a research university specializing in engineering science & technology.
Power Grid Model
The global energy transition is placing new and unprecedented demands on Distribution System Operators (DSOs). Alongside upgrades to grid capacity, processes such as digitization, capacity optimization, and congestion management are becoming vital for delivering reliable services.
Power Grid Model is an open source project from Linux Foundation Energy and provides a calculation engine that is increasingly essential for DSOs. It offers a standards-based foundation enabling real-time power systems analysis, simulations of electrical power grids, and sophisticated what-if analysis. In addition, it enables in-depth studies and analysis of the electrical power grid’s behavior and performance. This comprehensive model incorporates essential factors such as power generation capacity, electrical losses, voltage levels, power flows, and system stability.
Power Grid Model is currently being applied in a wide variety of use cases, including grid planning, expansion, reliability, and congestion studies. It can also help in analyzing the impact of renewable energy integration, assessing the effects of disturbances or faults, and developing strategies for grid control and optimization.
What to expect
For the upcoming meetup we are organizing, we have an exciting lineup of activities planned:
-Insightful presentations covering two practical applications of the Power Grid Model.
-An update on the latest advancements in Power Grid -Model technology during the first and second quarters of 2024.
-An interactive brainstorming session to discuss and propose new feature requests.
-An opportunity to connect with fellow Power Grid Model enthusiasts and users.
Let's Integrate MuleSoft RPA, COMPOSER, APM with AWS IDP along with Slackshyamraj55
Discover the seamless integration of RPA (Robotic Process Automation), COMPOSER, and APM with AWS IDP enhanced with Slack notifications. Explore how these technologies converge to streamline workflows, optimize performance, and ensure secure access, all while leveraging the power of AWS IDP and real-time communication via Slack notifications.
HCL Notes and Domino License Cost Reduction in the World of DLAUpanagenda
Webinar Recording: https://www.panagenda.com/webinars/hcl-notes-and-domino-license-cost-reduction-in-the-world-of-dlau/
The introduction of DLAU and the CCB & CCX licensing model caused quite a stir in the HCL community. As a Notes and Domino customer, you may have faced challenges with unexpected user counts and license costs. You probably have questions on how this new licensing approach works and how to benefit from it. Most importantly, you likely have budget constraints and want to save money where possible. Don’t worry, we can help with all of this!
We’ll show you how to fix common misconfigurations that cause higher-than-expected user counts, and how to identify accounts which you can deactivate to save money. There are also frequent patterns that can cause unnecessary cost, like using a person document instead of a mail-in for shared mailboxes. We’ll provide examples and solutions for those as well. And naturally we’ll explain the new licensing model.
Join HCL Ambassador Marc Thomas in this webinar with a special guest appearance from Franz Walder. It will give you the tools and know-how to stay on top of what is going on with Domino licensing. You will be able lower your cost through an optimized configuration and keep it low going forward.
These topics will be covered
- Reducing license cost by finding and fixing misconfigurations and superfluous accounts
- How do CCB and CCX licenses really work?
- Understanding the DLAU tool and how to best utilize it
- Tips for common problem areas, like team mailboxes, functional/test users, etc
- Practical examples and best practices to implement right away
Cosa hanno in comune un mattoncino Lego e la backdoor XZ?Speck&Tech
ABSTRACT: A prima vista, un mattoncino Lego e la backdoor XZ potrebbero avere in comune il fatto di essere entrambi blocchi di costruzione, o dipendenze di progetti creativi e software. La realtà è che un mattoncino Lego e il caso della backdoor XZ hanno molto di più di tutto ciò in comune.
Partecipate alla presentazione per immergervi in una storia di interoperabilità, standard e formati aperti, per poi discutere del ruolo importante che i contributori hanno in una comunità open source sostenibile.
BIO: Sostenitrice del software libero e dei formati standard e aperti. È stata un membro attivo dei progetti Fedora e openSUSE e ha co-fondato l'Associazione LibreItalia dove è stata coinvolta in diversi eventi, migrazioni e formazione relativi a LibreOffice. In precedenza ha lavorato a migrazioni e corsi di formazione su LibreOffice per diverse amministrazioni pubbliche e privati. Da gennaio 2020 lavora in SUSE come Software Release Engineer per Uyuni e SUSE Manager e quando non segue la sua passione per i computer e per Geeko coltiva la sua curiosità per l'astronomia (da cui deriva il suo nickname deneb_alpha).
Fueling AI with Great Data with Airbyte WebinarZilliz
This talk will focus on how to collect data from a variety of sources, leveraging this data for RAG and other GenAI use cases, and finally charting your course to productionalization.
Taking AI to the Next Level in Manufacturing.pdfssuserfac0301
Read Taking AI to the Next Level in Manufacturing to gain insights on AI adoption in the manufacturing industry, such as:
1. How quickly AI is being implemented in manufacturing.
2. Which barriers stand in the way of AI adoption.
3. How data quality and governance form the backbone of AI.
4. Organizational processes and structures that may inhibit effective AI adoption.
6. Ideas and approaches to help build your organization's AI strategy.
Introduction of Cybersecurity with OSS at Code Europe 2024Hiroshi SHIBATA
I develop the Ruby programming language, RubyGems, and Bundler, which are package managers for Ruby. Today, I will introduce how to enhance the security of your application using open-source software (OSS) examples from Ruby and RubyGems.
The first topic is CVE (Common Vulnerabilities and Exposures). I have published CVEs many times. But what exactly is a CVE? I'll provide a basic understanding of CVEs and explain how to detect and handle vulnerabilities in OSS.
Next, let's discuss package managers. Package managers play a critical role in the OSS ecosystem. I'll explain how to manage library dependencies in your application.
I'll share insights into how the Ruby and RubyGems core team works to keep our ecosystem safe. By the end of this talk, you'll have a better understanding of how to safeguard your code.
Best 20 SEO Techniques To Improve Website Visibility In SERPPixlogix Infotech
Boost your website's visibility with proven SEO techniques! Our latest blog dives into essential strategies to enhance your online presence, increase traffic, and rank higher on search engines. From keyword optimization to quality content creation, learn how to make your site stand out in the crowded digital landscape. Discover actionable tips and expert insights to elevate your SEO game.
Unlock the Future of Search with MongoDB Atlas_ Vector Search Unleashed.pdfMalak Abu Hammad
Discover how MongoDB Atlas and vector search technology can revolutionize your application's search capabilities. This comprehensive presentation covers:
* What is Vector Search?
* Importance and benefits of vector search
* Practical use cases across various industries
* Step-by-step implementation guide
* Live demos with code snippets
* Enhancing LLM capabilities with vector search
* Best practices and optimization strategies
Perfect for developers, AI enthusiasts, and tech leaders. Learn how to leverage MongoDB Atlas to deliver highly relevant, context-aware search results, transforming your data retrieval process. Stay ahead in tech innovation and maximize the potential of your applications.
#MongoDB #VectorSearch #AI #SemanticSearch #TechInnovation #DataScience #LLM #MachineLearning #SearchTechnology
How to Get CNIC Information System with Paksim Ga.pptxdanishmna97
Pakdata Cf is a groundbreaking system designed to streamline and facilitate access to CNIC information. This innovative platform leverages advanced technology to provide users with efficient and secure access to their CNIC details.
[WSO2 Open Banking & Security Forum Mexico 2019] Walking the Tightrope: Balancing Security and Convenience in Banking
1. OPEN BANKING AND SECURITY FORUM 2019
Walking the Tightrope
Balancing Security and Convenience in Digital
Banking
Johann Dilantha Nallathamby
Associate Director / Solutions Architect @ WSO2
johann@wso2.com
2. OPEN BANKING AND SECURITY FORUM 2019
Agenda
• Identity Management in an API-Driven World
• Identities in Open Banking
• Onboarding and Authentication in Open Banking
• Identity Propagation
• Aggregators
3. OPEN BANKING AND SECURITY FORUM 2019
Identity Management in an
API-Driven World
4. OPEN BANKING AND SECURITY FORUM 2019
API Management & Integration are key components in
Open Banking
5. OPEN BANKING AND SECURITY FORUM 2019
Identity Management is an inherent part of API
Management & Integration
6. OPEN BANKING AND SECURITY FORUM 2019
Decoupling API Runtime
API Runtime +=
7. OPEN BANKING AND SECURITY FORUM 2019
Consumer Identity Management is like
walking the tightrope.
Balancing convenience along with an awareness of security and privacy
requirements has always been a dilemma for security and risk professionals.
Consumer identity management can significantly detract from consumer
experience if it is overly complicated; however, if it’s not strong, it doesn’t
provide enough security.
9. OPEN BANKING AND SECURITY FORUM 2019
API Store
Application
Developer
Application Developers
10. OPEN BANKING AND SECURITY FORUM 2019
Applications (TPPs) & Customers
Mobile App
Website
API Gateway
Core Banking
Customer
Application
Integration
Gateway
11. OPEN BANKING AND SECURITY FORUM 2019
Identity Management for
Application Developers
14. OPEN BANKING AND SECURITY FORUM 2019
Federated Identity Management
User Story
Open Banking Implementation
Entity (OBIE) mandates
federated identity management
with its directory for all TPPs.
However the bank wishes to
manage a profile-lite for its TPP
users for offline communication
purposes.Solution
1. Federated Login (mandatory)
2. Just-In-Time (JIT) account provisioning (optional)
3. Just-In-Time password provisioning (optional)
4. Ask required attributes (optional)
22. OPEN BANKING AND SECURITY FORUM 2019
Delegated Access Control
OAuth2 has become the defacto standard for API Security for
consumer-facing APIs in an Open API Economy due its simplicity,
developer friendliness and suitability across heterogenous technology
platforms
23. OPEN BANKING AND SECURITY FORUM 2019
Identity Management Banking
Customers
25. OPEN BANKING AND SECURITY FORUM 2019
Directory Integration
SOAPRest
26. OPEN BANKING AND SECURITY FORUM 2019
Federated Login
User Story
The bank has an existing
in-house identity provider
where the banks customer
accounts are stored. The bank
wishes to federated logins to
the in-house identity provider
rather than duplicating the
account information and
creating “identity silos”.
5
1 2
3
4
Sending back federated ID
29. OPEN BANKING AND SECURITY FORUM 2019
Brokered Authentication
All consumer-facing applications in an Open API Economy are
predominantly OpenID Connect based due to its relevance to
OAuth2.
30. OPEN BANKING AND SECURITY FORUM 2019
Strong Customer Authentication (SCA) Flows
1. Redirect
2. Decoupled
3. Embedded
4. App2App
31. OPEN BANKING AND SECURITY FORUM 2019
Adaptive Authentication
Dynamic, Context-aware, Multi-factor Authentication
32. OPEN BANKING AND SECURITY FORUM 2019
Example: Level of Assurance (LoA)
View balance Fund transfer
33. OPEN BANKING AND SECURITY FORUM 2019
Example: Region Based Step-up Authentication
34. OPEN BANKING AND SECURITY FORUM 2019
Example: Device based Step-up Authentication
Trusted / Untrusted / New
35. OPEN BANKING AND SECURITY FORUM 2019
Example: Risk based Step-up Authentication
Examples
1. Login patterns (time of the day, day of the week, etc.)
2. Last successful login time
3. Typing speed
4. Consecutive incorrect password attempts
Get Risk
Score
36. OPEN BANKING AND SECURITY FORUM 2019
Analyzing Login Events in a Time Window
40. OPEN BANKING AND SECURITY FORUM 2019
Flowing Claims to Downstream Resources
Mobile App
Website
API Gateway
Core Banking
Identity Propagation
Integration
Gateway
41. OPEN BANKING AND SECURITY FORUM 2019
Motivation
1. Positive identification of the customer and application
2. Control access to fine-grained backend services based on
entitlements of the customer and application
3. Filter data in the API provider’s response according to data
entitlements of customer and application
4. Audit and keep records of data access
42. OPEN BANKING AND SECURITY FORUM 2019
Trusted Subsystem
• Most popular security pattern to propagate identities
• More information:
https://medium.com/@johann_nallathamby/identity-propagation-in-a-gateway-architecture-e898b9eec5ca
43. OPEN BANKING AND SECURITY FORUM 2019
Trusted Subsystem Security Patterns
Mobile App
Website
API Gateway
Core Banking
Integration
Gateway
Certificate
Authority
<trust>
• Trusted Subsystem Generated Identity Tokens
<JWT> <JWT>
44. OPEN BANKING AND SECURITY FORUM 2019
Trusted Subsystem Security Patterns
Mobile App
Website
API Gateway
Core Banking
Integration
Gateway
<trust>
• 3rd Party Generated Identity Tokens
<OAuth2 Token
Introspection>
<JWT> <JWT>
46. OPEN BANKING AND SECURITY FORUM 2019
Dynamic routing to Bank API Providers
Mobile App
Website
API Gateway
Bank B
Integration
Gateway
Bank A
Bank A IdP
Bank B IdP
1 2
3 4
5
Self-contained access token
<OpenID
Connect>
<identity federation>
<API call> <internal
service
call>
<backend call>
{“random”:“abcd…1234”,“realm”:“Bank-A”}