1. What is CIBA
CIBA is an acronym for Client Initiated Backchannel Authentication and its based on OpenID Connect. CIBA allows a client application, known as a consumption device, to obtain authentication and consent from a user without requiring the user to interact with the client directly. Instead, the client application can initiate a backchannel request to the user's authentication device, such as a smartphone with an authenticator app installed, to authenticate the user and consent to the operation.
...
More information can be found in the following blog post
2. Integration
For CIBA integration the OpenID Provider (Audkenni) and the Client (Relying Party in OpenID connect flow) first need to exchange their endpoints, signing data and credentials which each other.
2.1. Information provided by the OpenID provider:
The endpoints of the OpenID Provider are static and can be found here (together with other information about the Audkenni provider). The most important endpoints are:
...
Next to that, the OpenID Provider will provide a client_id and a client_secret to the Client (Relying Party)
2.2. Information provided by the Client:
The Relying Party only needs to provide the information how he is going to sign the request JWT in order for to validate it. e.g. In case the clients signs the JWT with a private key the OpenID provider will need the public key. If the client uses a JSON web key then the OpenID provider would need the Public key of that web key
...