BSI PD ISO/TS 23029:2020

$198.66

Web-service-based application programming interface (WAPI) in financial services

Published By	Publication Date	Number of Pages
BSI	2020	62

Guaranteed Safe Checkout

Categories: 35.240.40 - IT applications in banking, BSI

If you have any questions, feel free to reach out to our online customer service team by clicking on the bottom right corner. We’re here to assist you 24/7.
Email:[email protected]

This document defines the framework, function and protocols for an API ecosystem that will enable online synchronised interaction. Specifically, the document:

defines a logical and technical layered approach for developing APIs, including transformational rules. Specific logical models (such as ISO 20022 models) are not included, but they will be referenced in the context of specific scenarios for guidance purposes;
will primarily be thought about from a RESTful design point of view, but will consider alternative architectural styles (such as WebSocket and Webhook) where other blueprints or scenarios are offered;
defines for the API ecosystem design principles of an API, rules of a Web-service-based API, the data payload and version control;
sets out considerations relevant to security, identity and registration of an API ecosystem. Specific technical solutions will not be defined, but they will be referenced in the context of specific scenarios for guidance purposes;
defines architectural usage beyond query/response asynchronous messaging towards publish/subscribe to support advanced and existing business models.

This document does not include:

a specific technical specification of an API implementation in financial services;
the development of JSON APIs based on the ISO 20022 specific message formats, such as PAIN, CAMT and PACS;
a technical specification that is defined or determined by specific legal frameworks.

PDF Catalog

PDF Pages	PDF Title
2	National foreword
7	Foreword
8	Introduction
9	1 Scope 2 Normative references 3 Terms and definitions
11	4 Design principles 4.1 General 4.2 Standards compatibility 4.3 Extensibility 4.4 Non-repudiation 4.5 Web resource unique identifiers (ID fields) 4.6 Idempotency 4.7 States 5 Related technology 5.1 General 5.2 Representational state transfer (REST) and simple object access protocol (SOAP) 5.2.1 General
12	5.2.2 REST 5.2.3 SOAP
13	5.3 WebSocket and Webhook 5.3.1 General 5.3.2 WebSocket 5.3.3 Webhook
14	5.4 HTTPS 5.5 JSON and XML 5.5.1 General 5.5.2 JSON 5.5.3 XML
15	5.6 Content negotiation 5.7 RESTful API description languages 6 Naming conventions
16	7 Resource path 7.1 General 7.2 Resource hops
17	7.3 Single resource versus collections of resources 8 WAPI styles 8.1 General
18	8.2 REST 8.2.1 General
19	8.2.2 Uniform interface
20	8.2.3 Apply the standard HTTP methods
21	8.2.4 Stateless sessions 8.2.5 Idempotency 8.2.6 Composition of the URI
22	8.2.7 Handling associations between resources 8.2.8 Request parameter usage
25	8.2.9 Post usage
26	8.2.10 The response
29	8.3 Asynchronous messaging and server push
30	8.3.1 Bidirectional communication model
31	8.3.2 Message subscription
32	8.3.3 Message publish 9 Data payload syntax 9.1 JSON 9.1.1 General 9.1.2 Syntax and structure
34	9.1.3 Data types 9.2 XML 9.2.1 General 9.2.2 Syntax and structure
36	9.2.3 Data types
38	10 Security and authentication 10.1 General 10.2 TLS
39	10.2.1 Certificate issuance and verification 10.3 Application and access layer security 10.3.1 Introduction
40	10.3.2 Overview of the OAuth 2.0 protocol
41	10.4 Read-only security profile 10.5 Read and write security profile 10.6 Message level integrity, source authentication and non-repudiation 10.6.1 General
42	10.6.2 Signing HTTP requests and responses 10.6.3 Signing JSON Payload
43	10.6.4 HTTP signature 10.7 Message level encryption 10.8 Version control
44	11 Use cases 11.1 ISO 20022 Web services 11.1.1 Introduction 11.1.2 Modelling guidelines
46	11.2 Mapping rules 11.2.1 RepositoryConcept
47	11.2.2 MessageDefinition 11.2.3 MessageBuildingBlock
48	11.2.4 MessageComponent 11.2.5 ChoiceComponent
50	11.2.6 MessageElement
51	11.2.7 ISO 20022 DataType transformation to JSON Schema
57	Annex A (informative) Approach to FX trading
60	Bibliography