Web / App Payment Services

Introduction

In accordance with the provisions of the Revised Payment Services Directive (PSD2), South West Multi National Bank E-banking. (hereafter referred to as “South West Multi National Bank) will grant access to Third Party Providers (hereafter referred to as TPPs) to client accounts if they have received the client consent. In that context, South West Multi National Bank has implemented South West Multi National Bank-HUB’s API solution. To find the technical specifications of the API solution please use the following link : South West Multi National Bank-HUB’s developer portal

Timeline
TPPs can access South West Multi National Bank’s testing environment (Sandbox) in order to test the interface with basic data. As of June 14 2019 TPPs will be able to access South West Multi National Bank’s dedicated production interface.

API standard used 
South West Multi National Bank has implemented the Berlin Group standard version 1.13220190215.
For further information, please use the following link : https://www.southwestmultinational.com/psd2-access-to-bank-accounts

Authentication procedure

The authentication procedure applied is the redirection approach, where the individual steps of the authentication are not executed at South West Multi National Bank-HUB’s Access to Account interface, but directly between the PSU and South West Multi National Bank. The PSU is redirected to the Bank’s web interface for authentication and thereby temporarily leaves the TPP interface for authentication. Once the PSU has been redirected to the Bank’s authentication service, the authentication of the PSU is executed step by step directly between the Bank and the PSU. After completion of the authentication, the PSU is redirected back to the TPP interface without sharing any authentication elements with the TPP. South West Multi National Bank-HUB verifies the integrity of this identification by validating South West Multi National Bank’s signature of the PSU.

Functionalities offered

South West Multi National Bank offers the following via its API:

• Account Information Services (AIS), which allows AISPs to access information on customer’s accounts, such as a list of all available accounts, balances of given accounts and additional details as well as transaction reports;
• Payment Initiation Services (PIS), which enables PISPs to initiate payment orders, to adjust those if necessary and to access information on the status of these payments.

Interface usage statistics

As per regulation, South West Multi National Bank publishes on a quarterly basis the daily usage statistics onto its Corporate Website for the scope of both interfaces:

• the API Dedicated Interface (date, uptime rate, downtime rate, AISP response time, PISP response time, CBPII response time, error response rate);
• the e-Banking Dedicated Interface (date, uptime rate, downtime rate, Consultation functions response time, Payment functions response time, error response rate).

Protocols used and communication

• Access Network: Internet
• Transport Protocol: HTTP version 1.1, TLS version 1.2 or higher
• Applicative Protocol: REST with HAL support
• Authorization Protocol: OAuth2 Authorization Code Grant (AISP, CBPII, PISP) or Client credentials Grant (PISP, CBPII)
• Data formats: JSON/UTF8 & XML
• Data model origin: ISO 20022
• Non-repudiation: HTTP Signature
• Technical Documentation: Swagger 2.0 (https://swagger.io/specification/)

Definitions