Products

Ozone has developed a suite of products which make it easy for any European bank or account provider (ASPSP) to meet their PSD2 requirements for both a ‘dedicated interface’ and a ‘testing facility’.

These products can easily be extended with almost any other API functionality, for example to help banks meet regulatory requirements in other markets outside Europe, and to help these ASPSPs partner with Third Party Providers (TPPs) to bring innovative new services to market.

Ozone API

The Ozone API easily integrates into any ASPSP’s existing platforms to enable a fully PSD2 compliant ‘dedicated interface’.

~

Authorisation Server

Open ID Connect Authorisation Server certified by the Open ID Foundation to comply with the Financial Grade API (FAPI) Security Profile and Client Initiated Backchannel Authentication (CIBA) Profile.

Resource Server

Resource Server with a full implementation of the latest Open Banking Limited (OBIE) Read/Write API Specification v3.1.1. This server can also be enhanced with almost any other read/write API specifications.

Connectors

Library of connectors to enable easy and fast integration into the bank’s existing authentication servers/devices, and core banking system feeds.

Ozone Sandbox

The Ozone Sandbox is an exact replica of the Ozone API, containing no sensitive/real customer data it meets all PSD2 requirements for a ‘testing facility’.

~

Authorisation Server

Open ID Connect Authorisation Server certified by the Open ID Foundation to comply with the Financial Grade API (FAPI) Security Profile and Client Initiated Backchannel Authentication (CIBA) Profile.

Resource Server

Resource Server with a full implementation of the latest Open Banking Limited (OBIE) Read/Write API Specification v3.1.1. This server can also be enhanced with almost any other read/write API specifications.

Reference Data

Pre-loaded sample data, which updates in real-time as payments are made. Includes UI for auto-generation and management of test data to emulate multiple brands, branches, account types, customers, accounts and transactions.

Ozone Portal

The Ozone Portal makes it easy for TPP developers to connect to the Ozone API and Ozone Sandbox, automatically and without obstacles.

i

Documentation

Specifications and documentation to help developers understand exactly what APIs are available and how to access them.

Onboarding and Management

Allows third parties to connect using either a social login (e.g. for those not yet authorised) or automatically via a trusted (e.g. eIDAS) certificate using Dynamic Client Registration (DCR). Includes administration interface for management and revocation of certificates.

w

Service Desk

Integration with the ASPSP’s existing service desk for management of developer issues, including notification of downtime and updates.

Ozone Datastore

The Ozone Datastore contains a record of all data relating to the ASPSP’s implementation. This provisioned by Ozone but then hosted by the ASPSP in a secure, dedicated VPC, so that Ozone has no access to sensitive data.

Z

Consent

Database of every access request. This ensures that TPPs can only access resources from PSU accounts for which they have explicit authorisation.

Tokens

Secure document store containing all access and refresh tokens issued to third parties to enable audit and non-repudiation.

h

Logs

Record of all server and application log files to enable monitoring and reporting of availability, performance and resource utilisation.

Secure, fast and highly available

N

Fully managed, Software-as-a-Service (SaaS) platform.

N

24/7 service desk with level 3 support.

N

Hosted on highly available, auto-scaling, dedicated (to the Customer) cloud infrastructure.

N

99.9% availability.

N

All sensitive data (e.g. access tokens and log files) hosted in client’s own Virtual Private Cloud (VPC) or data centre.

N

All interactions fully logged, to facilitate real-time reporting and alerts.

N

Ongoing updates to all future releases of OBIE API Specifications.

Implementation and support services

Ozone has a growing network of implementation partners, and is happy to work with the client’s existing teams to deliver any or all of the following services:

 

  • Integration with directory services (e.g. OBIE Directory).
  • Integration with IAM and authentication services/devices.
  • Integration with core banking systems.
  • Reporting and publishing of availability and performance to meet regulatory requirements and business needs.
  • Bespoke development of mobile or web applications.
  • Level 1 and 2 support to TPPs.