[Openid-specs-fapi] Issue #713: FAPI Overview Page text change (openid/fapi)

[Nat]

New issue 713: FAPI Overview Page text change
https://bitbucket.org/openid/fapi/issues/713/fapi-overview-page-text-change

Nat Sakimura:

Currently, it goes: 

FAPI was previously known as the Financial-grade API but there was consensus within the working group to update the name to just FAPI to reflect that the specification is appropriate for many high-value use-cases requiring a more secure model beyond just financial services.

In many cases, Fintech services such as aggregation services use screen scraping and stores user passwords. This model is both brittle and insecure. To cope with the brittleness, it should utilize an API model with structured data and to cope with insecurity, it should utilize a token model such as OAuth \[RFC6749, RFC6750\].

This working group aims to rectify the situation by developing a REST/JSON model protected by OAuth. Specifically, the FAPI WG aims to provide JSON data schemas, security and privacy recommendations and protocols to:

* enable applications to utilize the data stored in the financial account,
* enable applications to interact with the financial account, and
* enable users to control security and privacy settings.

Both commercial and investment banking account as well as insurance, and credit card accounts are to be considered.

This is several years out of date. Propose to change it to: 

FAPI is a general-purpose high-security API protection profile. It has been adopted as nation-wide standard in many countries. 

I am applying the change pre-emptively now, but we can always get back to the old text as above.

Responsible: Nat Sakimura