<html>

<head>

<meta http-equiv="Content-Type" content="text/html; charset=iso-2022-jp">

<meta content="text/html; charset=utf-8">

</head>

<body>

<div id="compose-container" itemscope="" itemtype="https://schema.org/EmailMessage" style="direction:ltr">

<span itemprop="creator" itemscope="" itemtype="https://schema.org/Organization"><span itemprop="name"></span></span>

<div>

<div>

<div style="direction:ltr">Could you guys please elaborate a little more? </div>

</div>

<div><br>

</div>

<div class="acompli_signature">

<div style="direction:ltr">Nat Sakimura </div>

<div style="direction:ltr">$B$3$N%a!<%k$K$O!"K\Mh$N08@h$NJ}$N$_$K8BDj$5$l$?5!L)>pJs$,4^$^$l$F$$$k>l9g$,$4$6$$$^$9!#$*?4$"$?$j$N$J$$>l9g$O!"Aw?.<T$K$4O"Mm$N$&$(!"$3$N%a!<%k$r:o=|$7$F$/$@$5$$$^$9$h$&$*4j$$?=$7>e$2$^$9!#(B</div>

<div><br>

</div>

<div style="direction:ltr">PLEASE READ$B!'(BThis e-mail is confidential and intended for the named recipient only. If you are not an intended recipient, please notify the sender and delete this e-mail.</div>

<div><br>

</div>

</div>

</div>

</div>

<hr tabindex="-1" style="display:inline-block; width:98%">

<div id="divRplyFwdMsg" dir="ltr"><font face="Calibri, sans-serif" color="#000000" style="font-size:11pt"><b>From:</b> Openid-specs-fapi <openid-specs-fapi-bounces@lists.openid.net> on behalf of Tom Jones via Openid-specs-fapi <openid-specs-fapi@lists.openid.net><br>

<b>Sent:</b> Sunday, February 25, 2018 4:24:06 AM<br>

<b>To:</b> Financial API Working Group List<br>

<b>Cc:</b> Tom Jones<br>

<b>Subject:</b> Re: [Openid-specs-fapi] The FAPI Security Model - Under Fire</font>

<div> </div>

</div>

<div>

<div dir="ltr">yeah, that fits the UK business model.

<div>It wont fly in the US however.</div>

</div>

<div class="gmail_extra"><br clear="all">

<div>

<div class="gmail_signature">

<div dir="ltr">

<div>Peace ..tom</div>

</div>

</div>

</div>

<br>

<div class="gmail_quote">On Thu, Feb 22, 2018 at 11:53 PM, Anders Rundgren via Openid-specs-fapi

<span dir="ltr"><<a href="mailto:openid-specs-fapi@lists.openid.net" target="_blank">openid-specs-fapi@lists.openid.net</a>></span> wrote:<br>

<blockquote class="gmail_quote" style="margin:0 0 0 .8ex; border-left:1px #ccc solid; padding-left:1ex">

Hi FAPIers,<br>

<br>

As a curious person I have always wondered how Open Banking/PISP/SCA would combine with Amazon's famous one-click checkout.<br>

<br>

Various LinkedIn and Slack conversations have revealed the (ugly?) truth.<br>

<br>

The intention (at least in the UK), is giving OAuth tokens "eternal life" and rather letting PISPs (Amazon is expected to be a one), deal with payer authorization.  This faithfully emulates the "card-on-file" system that powers most US based super providers.<br>

<br>

Cheers,<br>

Anders<br>

______________________________<wbr>_________________<br>

Openid-specs-fapi mailing list<br>

<a href="mailto:Openid-specs-fapi@lists.openid.net" target="_blank">Openid-specs-fapi@lists.openid<wbr>.net</a><br>

<a href="http://lists.openid.net/mailman/listinfo/openid-specs-fapi" rel="noreferrer" target="_blank">http://lists.openid.net/mailma<wbr>n/listinfo/openid-specs-fapi</a><br>

</blockquote>

</div>

<br>

</div>

</div>

</body>

</html>