Trust Framework 2 min read
The Trust Framework facilitates secure data sharing between Licensed Financial Institutions (LFIs) and Third-Party Providers (TPPs) by delivering key services such as API discovery, client onboarding, and client authentication.
Sandbox and Production endpoints
Sandbox Trust Framework
- Web Application: https://web.sandbox.directory.openfinance.ae/
- OIDC Discovery API: https://auth.sandbox.directory.openfinance.ae/.well-known/openid-configuration
Production Trust Framework
- Web Application: https://web.directory.openfinance.ae/
- OIDC Discovery API: https://auth.directory.openfinance.ae/.well-known/openid-configuration
What the Trust Framework provides
Trust Anchors
Maintain a registry of authorized participants, defining their roles and scopes of access within the ecosystem.
API Portal for Discovery
Serve as a centralized directory of all servers, clients, and APIs participating in the ecosystem.
Keystore
Manage a registry of active cryptographic keys for each participant. These keys are used to validate identities, enabling mutual trust — an essential foundation for secure data sharing.
Public Key Infrastructure (PKI)
Issue and manage TLS, signature, and encryption certificates. The PKI also provides mechanisms for verifying certificates generated within the platform.
LFIs, TPPs, and how they coexist in the directory
All organisations participating in Open Finance operate within the Trust Framework. Upon successful onboarding, participants are registered within the Framework and gain visibility of other authorised organisations in the ecosystem.
Organisations are classified according to their role:
Licensed Financial Institutions (LFIs) provide capabilities into the Open Finance ecosystem. For example, an institution such as ADCB may expose payment initiation services or account information APIs for consumption by authorised participants.
Third Party Providers (TPPs) consume the capabilities made available through Open Finance. For example, a fintech organisation such as Spare Technologies may access payment or data services provided by LFIs to deliver customer-facing solutions.
Where permitted by their regulatory licence, an LFI may also operate in the capacity of a TPP. In such cases, the organisation retains its LFI classification within the Trust Framework while exercising TPP capabilities.