Funny story, this. UK.gov's 'open banking app revolution'. Security experts not a fan of it • The Register
xxx
APIs (application protocol interfaces), which are a major cornerstone of the CMA's plan for banks to share consumer data, can also provide an easy route for attackers if not properly secure.
Well, true dat. But since neither the APIs, nor the security architecture, nor the practices, procedures and audit mechanism have been defined, it is simply impossible to say whether the UK OBWG implementation is secure or not.
Comments
Post a Comment