W3C home > Mailing lists > Public > public-credentials@w3.org > November 2015

Making Mobile BankID "phishsafe"

From: Anders Rundgren <anders.rundgren.net@gmail.com>
Date: Sun, 29 Nov 2015 09:02:30 +0100
To: W3C Credentials Community Group <public-credentials@w3.org>
Message-ID: <565AB116.1090405@gmail.com>
HI Guys,

What is your solution for making things like the Swedish and Norwegian Mobile BankID schemes "phishsafe"?
These schemes principally work as my QR-ID demo (although relying on hard-coded URLs):
https://mobilepki.org/webauth/home
https://cyberphone.github.io/openkeystore/resources/docs/QR-ID-presentation.pdf
A nice solution which in spite of using PKI is fully "phishable".

Anders
Received on Sunday, 29 November 2015 08:03:01 UTC

This archive was generated by hypermail 2.3.1 : Wednesday, 11 July 2018 21:19:26 UTC