[triggercut]

OAuth2 and Open ID Connect (and FAPI) underpin the design of both the UK and Australian Open Banking systems. The Australian design (Consumer Data Right) is even starting to extend into other sectors beyond banking, such as Energy and Telecommunications, where "Data Holders" (sector specific companies, think your bank, your power company, your telco etc.) must become identity providers so consumers can log-in and grant access to new third party products (Data Recipients) who will provide value added services on top of your data (account aggregation, bill smoothing, who knows) via standard APIs. This is reflected in law and compliance is monitored by a government agency.

Other countries are watching these examples before undertaking their own versions.

The future could be built on it.