European Banking Federation (EBF) is highly concerned that member states of the EU are adopting a model for payments initiation services (PSD2) that poses significant risks to clients' bank accounts. The main concern is that consumers engaging in e-commerce transaction will have to share their security credentials with third party payment service providers and this could be exploited by cyber-criminals. The EBF suggests that the sharing of credentials with third parties should be prohibited.