The OWASP Foundation works to improve the security of software through its community-led open source software projects, hundreds of chapters worldwide, tens of thousands of members, and by hosting local and global conferences.
The second OWASP Scotland Chapter meeting of 2020 will take place on Thursday the 28th of May. Context consultants Margus Lind and Daniela Schoeffmann will be presenting at this virtual event, talking about their experiences of testing Open Banking implementations.
With an increasing number of banks using APIs to share data, Open Banking promises better business opportunities and more robust security for customers and banks. However, implementation of publicly accessible APIs and introduction of new security models create a myriad of challenges. This makes for a wider attack surface and puts data in the hands of more companies (third party providers) who have differing approaches to customer data protection. Margus and Daniela's talk will cover a brief introduction to Open Banking, their experiences with testing implementations of Open Banking, as well as the technical and project management challenges they have overcome along the way.