[Openid-specs-fapi] Issue #146: CIBA - Fraud Indicator Standards and Signed Communication Mechanism of them. (openid/fapi)
issues-reply at bitbucket.org
Fri Jun 8 14:32:33 UTC 2018
New issue 146: CIBA - Fraud Indicator Standards and Signed Communication Mechanism of them.
After the meeting with latest Open Banking workshop on decoupled authenticaton mechanisms there was broad support for CIBA as a standard.
There was strong support for the RP to provide standardized information about the consumption device to the OP as part of this flow for fraud and threat decisioning.
Any context information that's provided, where the expectation is that an OP will rely on it to inform risk decisions e.g SCA or not SCA, should be transmitted in a way that supports nonrepudiation - signed payload.
More information about the Openid-specs-fapi