For those who are betting on FIDO for payments, the following security analysis may be of interest: https://github.com/w3c/webauthn/issues/1584 Wherever this goes, the end result will most likely affect Open Banking APIs as well. Anders