Raidiam Auth

Financial-grade security that grows with your ecosystem

Build the authorisation model once — FAPI 2.0, mTLS, DPoP, certificate-bound tokens — then apply it across every use case, every participant, and every new entity type your ecosystem adds. 30+ specifications. One investment. The auth layer that scales from open banking to wallets, agents, and whatever comes next.

See the platform
See specifications
Raidiam Auth

The most standards-complete financial-grade authorisation server available

Raidiam Auth is a certified FAPI 2.0 authorisation server that supports more OAuth, OpenID, and financial-grade specifications than any other commercially available product. It powers central authentication services for the world's largest open finance ecosystems — and it's available standalone for any participant that needs financial-grade authorisation.

Financial-grade by default

Not a basic OAuth server with security bolted on. Raidiam Auth is FAPI 2.0 certified from the ground up. mTLS, DPoP, certificate-bound tokens, signed request objects, and JWT-secured responses are native — not optional extensions.

Every advanced flow

PAR for secure authorisation requests. RAR for fine-grained permissions. CIBA for backchannel authentication. Device flow for IoT. Token exchange for delegation. Every modern OAuth flow, production-ready.

Ecosystem-scale proven

This isn't a lab experiment. Raidiam Auth powers the central authentication services for Brazil's open finance ecosystem — serving the Central Bank's own services across an ecosystem of 159 banks, 173 data recipients, zero security incidents.

Standalone or integrated

Deploy as part of the Raidiam Connect platform, or use standalone as your organisation's financial-grade authorisation server. Full FAPI 2.0 compliance either way.

30+OAuth & OpenID specifications
6FAPI certification profiles
15+Cryptographic algorithms
100B+API calls secured annually
30+ specifications supported
Raidiam Auth

Core OAuth & OpenID

OAuth 2.0 (RFC 6749)OAuth 2.1OpenID Connect CoreOpenID Connect DiscoveryPKCE (RFC 7636)Token Introspection (RFC 7662)Token Revocation (RFC 7009)

Financial-Grade (FAPI)

FAPI 1.0 BaselineFAPI 1.0 AdvancedFAPI 2.0 Security ProfileFAPI-CIBAPCI DSS 4.0 Compliant

Advanced Security

mTLS Client Auth (RFC 8705)Certificate-Bound TokensDPoP (Proof-of-Possession)JAR (Signed Request Objects)JARM (JWT Response Mode)Self-Signed TLS Client Auth

Advanced Flows

PAR (Pushed Auth Requests)RAR (Rich Auth Requests)CIBA (Backchannel Auth)Device Authorization (RFC 8628)Token Exchange (RFC 8693)

Cryptographic

RS256 / RS384 / RS512PS256 / PS384 / PS512ES256 / ES384 / ES512EdDSAA128GCM / A256GCMECDH-ES

Identity & Session

Pairwise Subject IdentifiersACR / AMR SupportBackchannel LogoutRP-Initiated LogoutDynamic Client RegistrationSession Management

Most authorisation servers support a handful of OAuth specs. Raidiam Auth supports over 30 — including every FAPI profile, every advanced security mechanism, and every modern grant flow. It's the authorisation server that central banks chose for the world's largest open finance ecosystems.

See Auth specifications in detail
Built Once. Expanding Everywhere.

The ecosystem control plane powering the world's largest digital economies

Live global operations
🇧🇷Live

Brazil Open Finance

  • 940+ institutions
  • 100B+ API calls/year

Central Bank of Brazil

🇧🇷Live

Brazil Open Insurance

  • 42 providers
  • 1.18M monthly API calls

Superintendência de Seguros Privados

🇦🇺Live

Australia ConnectID

  • Big Four banks
  • 10M+ customers

Australian Payments Plus

🇳🇿Live

NZ Fraud Data Sharing

  • NZBA member banks
  • Fraud prevention network

New Zealand Banking Association

🇦🇪Growing

UAE Open Finance

  • Central Bank of UAE
  • National ecosystem

Central Bank of UAE

🇬🇧Growing

UK Smart Data

  • Cross-sector trust
  • Open Banking origins

UK Government / FCA

0+Banks and financial institutions
0National ecosystems and programmes
0B+API calls per year
Security incidents. Ever.

Our clients include central banks, payment scheme operators, and globally systemically important financial institutions. We don't build point solutions. We operate the ecosystem control plane that the world's financial system depends on. They built once. They keep expanding.

Raidiam is a founding contributor to OpenID Federation and actively shapes the standards that define how digital trust ecosystems work globally. OpenID Federation is the standard. Raidiam Connect is the ecosystem control plane that makes it work at national scale — and lets it expand to whatever comes next.

OAuth 2.0OpenID ConnectFAPI 2.0OpenID FederationOAuth 2.1MCP

Built on 10+ years of battle-tested standards

See how Brazil uses Raidiam Connect
Build Once. Expand Everywhere.

Where will your ecosystem take you?

Whether you're a regulator building a national digital economy, an enterprise platformising across brands and clouds, or a bank that wants to stop rebuilding trust for every new use case — there's a next step.

See It in Action

See how one investment in Raidiam Connect covers your first use case — and the next hundred

See It in Action

Request a Briefing

For regulators and central banks — how to build the foundations for an expandable digital economy

Request a Briefing

See the Proof

Brazil started with 2 data-sharing scopes. Today it has hundreds — all on the same infrastructure

See the Proof

Not sure where to start? Build the business case → · See if this is right for you → · Developer Portal & API docs → · Security & Trust Center →