API Security Framework

  1. News & Insights

API Security Framework

16 March 23

Share This

The European Payments Council (EPC) publishes today the Application Programming Interface (API) security framework that lists the minimum security-related requirements applicable to the SEPA Request-to-Pay (SRTP) and SEPA Payment Account Access (SPAA) scheme participants using APIs, whether they rely on the default European Payments Council (EPC) SRTP related API Specifications or on other API specifications.

This framework will become mandatory as of 30 November 2023 for the SRTP and SPAA scheme participants when using APIs, whether they rely on the default European Payments Council SRTP related API Specifications or on other API specifications.

Your reactions

If you would like to comment on this article, please identify yourself with your first and last name. Your name will appear next to your comment. Email addresses will not be published. Please note that by accessing or contributing to the discussion you agree to abide by the EPC website conditions of use.

Related document
API Security Framework
Latest News
Yearly update of the “Payment Threats and Fraud Trends Report”
Call for participants in the SEPA Payment Account Access (SPAA) Scheme Interest Group
The EPC One-Leg Out Instant Credit Transfer (OCT Inst) payment scheme goes live
Publication of the SEPA Payment Account Access (SPAA) scheme’s default remuneration model