Compliance and Beyond

  • TYPE: Combined Session DATE: Thursday, March 01, 2018 TIME: 15:00-16:00 LOCATION: maX 1

PSD2 – Does the RTS Prohibit Secure Customer Authentication?

On January 13th, 2018 a new set of rules for banking came into force that open up the market by allowing new companies to offer electronic payment services.  On November 27th, 2017 the European Union published and press release and a draft Regulatory Technical Standard (RTS) on strong authentication.

On the one hand the press release says that – “thanks to PSD2 consumers will be better protected when they make electronic payments or transactions because the RTS makes strong customer authentication (SCA) the basis for accessing one's payment account, as well as for making payments online”.  However, the RTS explicitly excludes preventing Payment Service Providers (PSP) from using the customer account credentials or imposing redirection to the Account Service Provider for authentication.

This session will discuss the security implications of this RTS on the use of proven industry standards such as OpenID and SAML as part secure authentication for open banking.

Watch videos:  
Log in to download the presentation:  



Session Links

Mike Small - PSD2 – Does the RTS Prohibit Secure Customer Authentication?

Panel - PSD2 and the Identity Problem

Frankfurt, Germany


Digital Finance World 2018

Registration fee:
€1200.00 $1500.00 S$1920.00 13200.00 kr
Mastercard Visa American Express PayPal INVOICE
Contact person:

Mr. Levent Kara
+49 211 23707710
  • Feb 28 - Mar 01, 2018 Frankfurt, Germany