This is a good article and audio interview of a executive who oversees compliance and discusses their bank’s decision to move from a core provider mostly because they wouldn’t stay up to date with the latest authentication guidance. Sounds extreme but if they have had quite a bit of Corporate Account Takeover and need stronger security it may be worth it.
Also interesting is that the guidance is over a year old now and this provider is still not in compliance. With the conversion time of 12 months, this bank will be out of compliance for over 2 years. Ouch!