Re: [webpayments] How do we protect certian data in the messages from certain parties in the flow as the use case requires? (#78)

Having looked at the use cases from @halindrome I am inclined to agree with the rest of the comments that this is not something that we should try to standardize.

Would everyone be happy if I propose that we put this explicitly out of scope for the API specification?

_**Note:** I don't think that prevents anyone that wishes to write up some guidance on how this could be done, doing so, and if the group agrees with the work it could be published as a group note and referenced informatively from the Security Considerations section._

_**Note:**  We will likely provide an example of how this can be done in the card payments specification which we have proposed to do._

Reply to this email directly or view it on GitHub:

Received on Thursday, 11 February 2016 12:49:12 UTC