[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[taler-marketing] branch master updated: bank slides: add some LibEuFin

From: gnunet
Subject: [taler-marketing] branch master updated: bank slides: add some LibEuFin draft slides
Date: Mon, 11 Jan 2021 18:21:04 +0100

This is an automated email from the git hooks/post-receive script.

dold pushed a commit to branch master
in repository marketing.

The following commit(s) were added to refs/heads/master by this push:
     new 73bad3d  bank slides: add some LibEuFin draft slides
73bad3d is described below

commit 73bad3dd4388a8febc6b63e9709ad773d7419306
Author: Florian Dold <>
AuthorDate: Mon Jan 11 18:20:56 2021 +0100

    bank slides: add some LibEuFin draft slides
 presentations/bank/bank.tex | 112 ++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 112 insertions(+)

diff --git a/presentations/bank/bank.tex b/presentations/bank/bank.tex
index 5adfe69..8a8c569 100644
--- a/presentations/bank/bank.tex
+++ b/presentations/bank/bank.tex
@@ -315,6 +315,118 @@ GNU Taler must ...
+\section{Integration with the core banking system}
+  \vfill
+  \begin{center}
+    {\bf Part ??: Integration with the core banking system}
+  \end{center}
+  \vfill
+\begin{frame}{Exchange escrow account access}
+The Taler exchange needs communicate with the core banking system \dots
+  \item to query for transactions into the exchange's escrow account
+  \item to initiate payment of aggregated Taler deposits to merchants
+In a Taler deployment, the \emph{Taler Wire Gateway} provides an API to the 
+for Taler-specific access to the Exchange's escrow account.  Multiple 
+of the Taler Wire Gateway exist:
+  \item a self-contained play money demo bank
+  \item LibEuFin, an adapter to EBICS and other protocols
+  LibEuFin is a standalone project that provides adapters to bank account
+  access APIs.
+  \begin{itemize}
+    \item LibEuFin provides both a generic access layer and an
+      implementation of the Taler Wire Gateway API for the exchange
+    \item currently, only EBICS 2.5 is supported
+    \item other APIs such as FinTS or PSD2-style XS2A APIs can be added
+      without requiring changes to the Exchange
+    \item tested with a GLS business account
+  \end{itemize}
+\begin{frame}{LibEuFin Concepts}
+  \begin{itemize}
+    \item A LibEuFin \emph{bank connection} is a set of credentials and 
+      to talk to the bank's account access API.
+    \item A LibEuFin \emph{bank account} is the information about a bank
+      account (balances, transactions, payment initiations) stored locally
+      within the LibEuFin service.  A LibEuFin bank account has a default Bank
+      Connection that is used to communicate with the bank's API.
+    \item A \emph{facade} provides a domain-specific access layer to bank 
+      and connections.  The \emph{Taler Wire Gateway Facade} implements the
+      API required by the Taler exchange and translates it to operations on the
+      underlying account/connection.
+  \end{itemize}
+\begin{frame}{LibEuFin Tooling}
+  \begin{itemize}
+    \item \texttt{libeufin-nexus} is the main service
+    \item Almost all configuration (except DB credentials)
+      is stored in the database and managed via a RESTful HTTP API
+    \item \texttt{libeufin-sandbox} implements a toy EBICS host for protocol
+      testing
+    \item \texttt{libeufin-cli} is client for the HTTP API (only implements a 
+      of available functionality)
+  \end{itemize}
+\begin{frame}{LibEuFin Setup Overview}
+  \begin{itemize}
+    \item Obtain EBICS subscriber configuration (host URL, host ID, user ID,
+      partner ID) for the Exchange's escrow account
+    \item Deploy the LibEuFin nexus service
+    \item Create a new LibEuFin bank connection (of type \texttt{ebics})
+    \item Export and back up the key material for the bank connection (contains
+      EBICS subscriber configuration and private keys)
+    \item Send subscriber initialization to the EBICS host (electronically)
+    \item Export key letter and activate subscriber in the EBICS host 
+    \item Synchronize the bank connection
+    \item Import the account into LibEuFin
+    \item Create a Taler Wire Gateway facade
+    \item Set up scheduled tasks for ingesting new transactions / sending 
+      initiations
+  \end{itemize}
+\begin{frame}{LibEuFin Implementation Limitations}
+  \begin{itemize}
+    \item LibEuFin is less stable than other Taler components, and future
+      updates might contain breaking changes (tooling, APIs and database
+      schema)
+    \item Fine-grained access control is not implemented yet
+    \item Error handling and recovery is still rather primitive
+    \item The Taler Wire Gateway does not yet implement automatic return
+      transactions when transactions with a malformed subject (i.e.  no reserve
+      public key) are received
+  \end{itemize}
+\begin{frame}{LibEuFin EBICS Limitations}
+  The GLS accounts with EBICs access that we have access to have some 
+  \begin{itemize}
+    \item SEPA Instance Credit Transfers aren't supported yet
+    \item Erroneous payment initiations are accepted by the protocol,
+      but an error message is later sent by paper mail (and not reported
+      by the CRZ download request)
+    \item Limited access to transaction history (3 months)
+  \end{itemize}
 \section{Operator security considerations}

To stop receiving notification emails like this one, please contact

reply via email to

[Prev in Thread] Current Thread [Next in Thread]