ISO TS 12812-3-2017 PDF

Full title and description

ISO/TS 12812-3:2017 — Core banking — Mobile financial services — Part 3: Financial application lifecycle management. A technical specification that defines interoperable principles, architectures, roles and processes for the lifecycle management of applications used in mobile financial services (authentication, banking and payment applications, and credentials).

Abstract

ISO/TS 12812-3:2017 specifies the interoperable lifecycle management of applications used in mobile financial services. It addresses different types of applications (authentication, banking, payment applications and credentials) and describes basic principles for application lifecycle management, architectures for application location and the impacts on secure element issuance, roles and domains of responsibility for management, lifecycle functions and processes, and scenarios for service models and actor roles.

General information

• Status: Published (Technical Specification; stage confirmed).
• Publication date: 28 March 2017.
• Publisher: International Organization for Standardization (ISO).
• ICS / categories: 03.060 (Finances. Banking. Monetary systems. Insurance).
• Edition / version: Edition 1 (2017) — ISO/TS (Technical Specification).
• Number of pages: 12.

Scope

The specification covers interoperable lifecycle management for applications supporting mobile financial services. It addresses principles to be considered during the application lifecycle, describes alternative architectures for where applications may reside (including implications for secure elements where present), defines roles and responsibilities for lifecycle management, specifies lifecycle functions and processes (issuance, update, suspension, revocation, transfer, end-of-life) and outlines service models and actor role scenarios relevant to mobile financial service ecosystems.

Key topics and requirements

• Interoperable lifecycle management requirements for mobile financial-service applications.
• Classification of application types: authentication, banking, payment applications and credentials.
• Principles for secure, auditable application lifecycle processes.
• Architectural options for application location and the related impact on secure element issuance and management.
• Definition of roles, domains of responsibility and actor interactions in the lifecycle (issuers, operators, TSMs, service providers, device owners).
• Lifecycle functions and processes: issuance, personalization, update, suspension, revocation, migration and end-of-life handling.
• Service-model scenarios and recommended operational behaviours for stakeholders.

Typical use and users

Used by banks, mobile payment providers, mobile network operators, trusted service managers, mobile OS/platform vendors, payment scheme operators, application developers, device manufacturers, security architects and regulators to design, operate and audit secure, interoperable application lifecycle processes for mobile banking and payment services.

Related standards

Part of the ISO 12812 series (Core banking — Mobile financial services). Closely related documents include ISO 12812-1 and the companion technical specifications ISO/TS 12812-2, ISO/TS 12812-4 and ISO/TS 12812-5 (other parts of the mobile financial services series). It is also used alongside standards and guidelines for secure elements, mobile security best practices and payment message/interop standards in the financial sector.

Keywords

mobile financial services, application lifecycle management, secure element, issuance, mobile banking, authentication, credentials, core banking, interoperability, trusted service manager, application lifecycle, mobile payments.

FAQ

Q: What is this standard?

A: ISO/TS 12812-3:2017 is a technical specification that defines interoperable principles, architectures, roles and processes for the lifecycle management of applications used in mobile financial services.

Q: What does it cover?

A: It covers lifecycle-related activities (issuance, personalization, updates, suspension, revocation, migration and end-of-life), architectures for where applications reside (and effects on secure elements), roles and responsibilities of actors, and service-model scenarios for mobile financial-service ecosystems.

Q: Who typically uses it?

A: Banks, mobile payment providers, mobile network operators, trusted service managers, payment scheme operators, device and OS vendors, application developers, security architects and regulators involved with mobile banking and mobile payments.

Q: Is it current or superseded?

A: The document was published on 28 March 2017 and is a published ISO Technical Specification. It was subject to ISO periodic review; the specification is listed as confirmed in ISO’s review cycle and, as of March 2, 2026, it remains a current published technical specification (not superseded).

Q: Is it part of a series?

A: Yes — it is Part 3 of the ISO 12812 series (Core banking — Mobile financial services). The series includes Part 1 and other parts (ISO/TS 12812-2, -4, -5) addressing related aspects of mobile financial services.

Q: What are the key keywords?

A: Mobile financial services, application lifecycle management, secure element, mobile banking, authentication, credentials, interoperability, trusted service manager.