API Security in WSO2 Open Banking explains how Regulatory Technical Standards (RTS) has elaborated with Payment Service Directive 2 (PSD2). It enhances consumer protection, promotes innovation and improves security of payment services across European Union. As mentioned in the Berlin Group implementation guide, eiDAS certification is used for QWAC in transport layer and for QCL in application layer. In this section, it describes how transport and application layer security is involved in the below steps. These steps secure the APIs used in WSO2 Open Banking. Let’s see how it is done.
...