Cyber Risk Management of API-Enabled Financial Crime in Open Banking Services
Odion Gift Ojehomon, Joanna Cichorska, Jerzy Michnik

TL;DR
This paper introduces a new framework to manage cyber risks in open banking by simulating financial crime scenarios and testing risk mitigation strategies.
Contribution
The novelty lies in combining System Dynamics, Agent-Based Modelling, and Monte Carlo simulation for cyber risk management in open banking.
Findings
Stricter onboarding and tighter API rate limits reduce operational tail losses by 20–30%.
The framework is adaptable to cross-border regulations and BigTech interactions.
The hybrid approach provides actionable risk metrics for resource allocation and stress testing.
Abstract
Open banking reshapes the financial sector by enabling regulated third-party providers to access bank data through APIs, fostering innovation but amplifying operational and financial-crime risks due to increased ecosystem interdependence. To address these challenges, this study proposes an integrated risk-management framework combining System Dynamics, Agent-Based Modelling, and Monte Carlo simulation. This hybrid approach captures feedback effects, heterogeneous agent behaviour, and loss uncertainty within a simulated PSD2-style environment. Simulation experiments, particularly those modelling credential-stuffing waves, demonstrate that stricter onboarding thresholds, tighter API rate limits, and enhanced anomaly detection reduce operational tail losses by approximately 20–30% relative to baseline scenarios. Beyond these specific findings, the proposed framework exhibits significant…
Genes, proteins, chemicals, diseases, species, mutations and cell lines named across the full text — each resolved to its canonical identifier and authoritative record.
Click any figure to enlarge with its caption.
Figure 1
Figure 2
Figure 3
Figure 4
Figure 5
Figure 6
Figure 7
Figure 8Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsBanking stability, regulation, efficiency · Complex Systems and Decision Making · Complex Systems and Time Series Analysis
