CAPS White Paper nr.4 on PSU Consent under PSD2
CAPS issued a new white paper that presents a joint opinion of the members of CAPS Open Framework that is believed to be a balanced and workable approach for the industry to move ahead on the topic of handling PSU consent under PSD2. It clarifies the advantages for the post PSD2 payments ecosystem at large, especially the PSU, by creating a transparent method of sharing PSU consent information amongst all parties involved.
CAPS White Paper nr.3 on mobile strong customer authentication (SCA) under PSD2
CAPS published a framework outlining how to navigate mobile strong customer authentication (SCA) under the Payment Services Directive (PSD2). The framework entitled “Mobile strong customer authentication under PSD2: comparisons and considerations” outlines the current SCA solutions available in the EU, the existing trust model in payments, compares the approaches to SCA, and also looks at what the future holds.
As outlined in the framework, PSD2 regulations create significant changes within the digital security environment. Specifically it requires the use of SCA in remote payment transactions, while SCA on mobile devices will be required to make use of a secure execution environment (SEE). The main challenges of SCA include translating the regulatory concept into commercially impactful authentication services, the involvement of more stakeholders in payment transactions, and an ever-increasing number of use cases where mobile SCA is needed.
The document is a non exhaustive list. It aims at inviting all stakeholders to share their views and help improve the applications under PSD2.
French PSD2 initiative STETS publishes API specification
Created accordingly to the new Payment Services Directive (PSD2), this API aims to provide a secure and easy-to-use set of services to be implemented by European ASPSPs (Account Servicing Payment Service Providers) on the server side for:
- AISP (Account Information Service Providers)
- PIISP (Payment Issuer Instrument Service Providers)
- PISP (Payment Initiation Service Providers)
It also provides authentication, authorization, proof management and fraud detection oriented features.
This API has been built with the latest technology standards using REST, OAuth2, JSON and HTTP-signature. It relies on ISO20022 elements for structuring the data to be exchanged between TPPs and ASPSPs.
Although developed for the French market STETS is open for everyone to be adopted.
Open Banking Regulation in UK: API Specifications
Open Banking, the implementation entity set up by the Competition & Markets Authority (CMA) to enable a new, secure way for customers to take control of their financial data and share it with organisations other than their banks, is pleased to announce the release of its Accounts and Transaction Information and Payments Initiation API Specifications.
Open Banking has developed specifications that determine how banks and building societies should enable other regulated companies to, with the customer’s express permission, access accounts and send payments. Using these standardised API specifications, banks and authorised third parties are now able to begin developing new, innovative propositions and to tailor their products and solutions to the individual needs of consumers and businesses.
These specifications are now available on www.openbanking.org.uk
CAPS present at ECB stakeholder meeting
In June 2016 the European Retail Payments Board, a board launched by the European Central Bank (ECB), wrote a memo where she - on the basis of current question marks on the demand side of the market - proposed a possible way forward for the Payment Initiation Services. For that purpose the ECB organized in October a stakeholder meeting on Payment Initiation Services where Michael Salmony and Lars Lolk Hauge as representatives presented the open framework of CAPS showing how CAPS can realize PSD2 in a manner beneficial to all parties. The framework was well received from both sides of the market.
If you would like to have more information or want to join CAPS please visit our Contact page.
CAPS makes PSD2 a reality
The CAPS White Paper nr. 2 is out now. It provides a Framework that can be used In order to realise the regulatory intent behind the PSD2. The paper describes the CAPS services and how the underlying open framework brings benefits to users (better services, more convenience, increased security etc.), FinTechs (convenient access to many banks across Europe in a harmonised way) and banks (reduction of complexity and cost plus becoming more attractive for new services). The concept of CAPS is being adopted and supported by an increasing number of organisations and the CAPS framework is explicitly open to all.
CAPS Website is released
Today the CAPS website has been released. Following the white paper in August 2015 CAPS has now made another step to show its ambition to be the answer to the questions everybody is raising in the industry: how to implement PSD2 Access to the Accounts in a way beneficial for all parties.
On the website you will find all the reasons why the CAPS open framework is there, what its objectives are and all the publications it produces. The participants of CAPS which number is ever increasing can also be found. For any questions or if you want to become a participant you can use the contact page.