[Openid-specs-fapi] Proposal to re-charter FAPI Working Group

Thu Dec 19 09:09:05 UTC 2024

Dear FAPI Working Group

We've been discussing updating the charter for the FAPI Working Group for
some time under this issue:
https://bitbucket.org/openid/fapi/issues/425/fapi-20-purpose-and-fapi-wg-scope

The original charter mentions JSON schemas and is focussed only on
financial APIs. We'd like to restrict the technical scope to security and
privacy, but expand the use-cases wider than just financial services.

Now that the OpenID Processes have been updated (
https://openid.net/wp-content/uploads/2024/10/OIDF_Process-Document_Final_2024-10-19.pdf)
we are keen to move this forward.

Before contacting the relevant group within the OpenID Foundation we wanted
to check if anyone on the list has an objection to the following (note the
only real change is the Charter and the basis for determining when the work
is complete):

*Name*: FAPI Working Group

*Charter/Statement of Purpose: *
The FAPI working group provides security and privacy recommendations and
protocols to enable applications to provide and use secure APIs.

*Current Scope*:
Working on completing FAPI 2.0 family of specifications, managing errata
for FAPI1 and JARM

*List of Specifications:*
FAPI 1.0 - Basic and Advanced
FAPI 2.0 Attacker Model
FAPI 2.0 Security Profile
FAPI 2.0 Message Signing
JARM
FAPI CIBA

*Working Drafts:*
Grant Management
FAPI 2.0 Implementers Advice
FAPI 2.0 Dynamic Client Registration
FAPI 2.0 HTTP Signatures

*Language: *English

*Method of Work:*
Weekly calls in Atlantic time zone on zoom
Bi-weekly calls in Pacific time zone on zoom
Ad hoc in person meetings at industry events

*Basis for determining when the work of the WG is completed:*
The working group has strong industry liaisons and is active in the roll
out of Open Banking and similar initiatives globally. We anticipate that
the WG will continue to work on standards and documents that facilitate the
transition to secure, standards-confirmant APIs across financial, health,
and other verticals for the foreseeable future. The pace of development may
slow down, but so long as FAPI Conformance Tests are being administered we
foresee the need to keep the WG active.

Thank you

Dave Tonge
FAPI WG Co-Chair
OpenID Foundation

-- 

Moneyhub Enterprise is a trading style of Moneyhub Financial Technology 
Limited which is authorised and regulated by the Financial Conduct 
Authority ("FCA"). Moneyhub Financial Technology is entered on the 
Financial Services Register (FRN 809360) at https://register.fca.org.uk/ 
<https://register.fca.org.uk/>. Moneyhub Financial Technology is registered 
in England & Wales, company registration number 06909772. Registered 
address: C/O Roxburgh Milkins Limited Merchants House North, Wapping Road, 
Bristol, United Kingdom, BS1 4RW, United Kingdom. Moneyhub Financial 
Technology Limited 2024 © Moneyhub Enterprise.

DISCLAIMER: This email 
(including any attachments) is subject to copyright, and the information in 
it is confidential. Use of this email or of any information in it other 
than by the addressee is unauthorised and unlawful. Whilst reasonable 
efforts are made to ensure that any attachments are virus-free, it is the 
recipient's sole responsibility to scan all attachments for viruses. All 
calls and emails to and from this company may be monitored and recorded for 
legitimate purposes relating to this company's business. Any opinions 
expressed in this email (or in any attachments) are those of the author and 
do not necessarily represent the opinions of Moneyhub Financial Technology 
Limited or of any other group company.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-fapi/attachments/20241219/46673571/attachment.htm>