[Owasp-leaders] Customer authentication and secure communication under PSD2

Wojciech Dworakowski wojciech.dworakowski at owasp.org
Tue Feb 2 15:26:43 UTC 2016

Hello all,

Are you following PSD2 (Payment Services Directive) implementation in
This European directive will reshape banking and payment services and apps
in Europe. Now EBA (European Banking Authority) is working on "Regulatory
Technical Standards" and they are *calling for comments until Feb 8:*

In my opinion, OWASP should express thoughts in this debate too.

1. Do you think that we as OWASP should take a part in such as discussion?
2. Do we have any "Industry Committee" or project which can handle this?
3. If not - who should I ask for permission to speak in the name of OWASP
and do we have any process of agreement on such as matters?
4. If you are interested in this topic, I have written draft of my answers
to EBA questions + short introduction and links to source materials.
Working copy is available here:

I invite all interested to work together on answers. If we will be able to
agree common opinion, we can answer EBA call for comments together as
OWASP. If not - I will send it on my own. The only real issue is short
deadline (Feb 8).

Wojciech Dworakowski
OWASP Poland Chapter Leader
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20160202/34e58245/attachment.html>

More information about the OWASP-Leaders mailing list