Financial Grade APIs Using OAuth & OpenID Connect
Financial-grade security is important not only for the financial sector. This level of security is also necessary for other industries, such as healthcare, insurance, energy, government and others. There are various aspects of OAuth and OpenID Connect that can be used to achieve financial-grade APIs as well as to meet regulatory requirements (like HIPAA, PSD2 & Open Banking).
- What financial-grade APIs are
- Why this level of security is important
- The dangers of bearer tokens and how tokens can be tied to a client
- How different aspects of OAuth and OpenID Connect can be used to achieve high security and privacy.