commit 643502a2d28c785830ac13c2c6a128e66b0d4276
parent 8c94d1268d3523663941813e53e939d6e43fb010
Author: Florian Dold <florian.dold@gmail.com>
Date: Tue, 9 Jun 2020 14:05:13 +0530
protocols: some more information
Diffstat:
1 file changed, 14 insertions(+), 1 deletion(-)
diff --git a/libeufin/banking-protocols.rst b/libeufin/banking-protocols.rst
@@ -30,12 +30,22 @@ Thus this protocol is a good choice for the German market.
FinTS / HBCI
============
-German home-banking standard. Only some banks allow authentication based on key pairs.
+German home-banking standard. FinTS is the successor of the Home Banking
+Computer Interface (HBCI), but older versions of FinTS are often still called
+HBCI.
+
+The current version, FinTS 4.0, is not widely supported by banks yet. Starting with FinTS,
+XML is used as a data format. Previous versions used a custom text/binary format.
+
+Only some banks allow authentication based on key pairs.
Due to different interpretation of PSD2, other banks now only allow authentication
methods that require interaction from the customer (SCA / Strong Customer Authentication).
Payloads these days can be ISO20022 messages.
+Examples:
+ * `GLS <https://www.gls.de/geschaefts-firmenkunden/zahlungsverkehr/onlinebankingverfahren-und-programme/daten-zum-onlinebanking/>`__
+
PSD2
====
@@ -67,6 +77,9 @@ legal prerequisites.
On a technical level, using PSD2 APIs usually requires having an `EIDAS
<https://en.wikipedia.org/wiki/EIDAS>`__ certificate.
+Examples:
+ * `Sparkasse <https://xs2a.sparkassen-hub.com/home>`__
+
Bank-Proprietary APIs
=====================
