search

ConsumerDataStandardsAustralia / future-plan

Repository of future demand for work by the DSB. Used to manage demand and prioritisation for up to twelve months ahead.
1 stars 0 forks source link

DSB Item - FAPI 2.0 + Advanced Security Migration Scoping #77

Open markverstege opened 2 years ago

markverstege commented 2 years ago

Problem Statement

By April 2023, the data standards will be aligned to FAPI 1.0 Final inclusive of Pushed Authorization Requests (PAR), JWT Secured Authorization Response Mode for OAuth 2.0 (JARM) and adoption of the Authorization Code Flow.

To support enhanced authentication standards and richer authorisation capability, the data standards are targetting uplift to the FAPI 2.0 profile. This consultation has previously been flagged via Decision Proposal 210 - Transition to FAPI 2.0 Profile. This consultation will look at the sequencing of FAPI 2.0 profile adoption, requirements and industry readiness.

Adoption of many FAPI 2.0 advanced components and/or adjacent standards such as CIBA, eKYC and SET will invaluable to build secure future-focused foundations for new sectors and action initiation.

CDR-API-Stream commented 1 year ago

This item is intended to cover a consultation on the DSB's approach to FAPI 2.0 uplift. It is envisaged that a Noting Paper will be presented to elicit feedback on participant considerations.