We’re pleased to announce that Authlete 3.0 has been awarded the first OpenID certifications for the FAPI 2.0 Security Profile Final and Message Signing Final, as well as the Australia FAPI 2.0 ConnectID Final, following the successful completion of conformance tests.
The FAPI 2.0 Security Profile was approved as a final specification in February 2025, and the FAPI 2.0 Message Signing is expected to be finalized in August 2025.
Authlete’s Joseph Heenan, CTO, and Daniel Fett, Security and Standardization Expert, contributed to the development of FAPI 2.0 Security Profile as authors. FAPI 2.0 is a set of specifications designed to enhance the security and interoperability of APIs. It brings a significant evolution to FAPI 1.0, with advanced security measures to meet the growing security challenges, notably in the financial industry.
Built on top of OAuth 2.0 and OpenID Connect, FAPI has been widely adopted as a security standard for open banking worldwide, including in Australia, Brazil, Saudi Arabia, and the United Kingdom. In addition, the adoption of FAPI is growing in countries like Japan, where financial institutions have implemented it for Banking as a Service.
At Authlete, we’ve helped our customers in the financial industry, such as Nubank, Latin America’s largest digital bank, and Japan’s Minna Bank and Hokkoku Bank, simplify and streamline FAPI implementation.
Discover how you can simplify the implementation of FAPI 2.0 using Authlete 3.0: https://www.authlete.com/developers/fapi2/sp/
Try out Authlete 3.0 for free: https://login.authlete.com/signup
To learn more about FAPI 2.0, watch the recording of Dan and Joseph’s presentation at the OAuth Security Workshop 2025: https://www.youtube.com/watch?v=jTXKYqg7glI