- From: Peter Saint-Andre <notifications@github.com>
- Date: Wed, 24 Jan 2018 22:32:23 +0000 (UTC)
- To: w3c/3ds <3ds@noreply.github.com>
- Cc: Subscribed <subscribed@noreply.github.com>
- Message-ID: <w3c/3ds/issues/1/360296494@github.com>
Regarding (1) - by "that information should be known when mediator hand-over control payment handler" do we mean that the mediator needs to know before the handover? If so, how does the mediator know this and who tells the mediator this is necessary? (In terms of https://raw.githubusercontent.com/lyra-labs/poc-w3c-webpayments/master/sequence-diagram-PRAPI-3DS2-proposal.png I'm trying to figure out the process.) Regarding (2) - when you say "merchant have to indicate the number of article bought", to whom does the merchant communicate this information in the Authentication Request (AReq) flow? The 3DS specification says "The 3DS Server forms the AReq message when requesting authentication of the Cardholder." Does the merchant need to communicate the number of articles bought to the 3DS Server before the server generates the AReq message? (And what about the value of the items or other information?) Regarding (3) - per https://raw.githubusercontent.com/lyra-labs/poc-w3c-webpayments/master/sequence-diagram-PRAPI-3DS2-proposal.png is Carte Bancaire an "Authentication Provider" or a "Payment Handler"? To whom is the risk analysis score communicated (e.g., to the merchant) in the Authentication Response (ARes) flow? -- You are receiving this because you are subscribed to this thread. Reply to this email directly or view it on GitHub: https://github.com/w3c/3ds/issues/1#issuecomment-360296494
Received on Wednesday, 24 January 2018 22:32:46 UTC