W3C home > Mailing lists > Public > public-payments-wg@w3.org > February 2016

[webpayments] How do we prevent keyboard hooking during payment? (#90)

From: oldoldb <notifications@github.com>
Date: Sun, 14 Feb 2016 22:01:57 -0800
To: w3c/webpayments <webpayments@noreply.github.com>
Message-ID: <w3c/webpayments/issues/90@github.com>
I looked through the architecture part and didn't find anything related. During payment process, when user types his login password or payment password, his environment may be insecure and some hook processes may exist, then these malicious processes can get what users type. So does our proposal contain something related with secure input? And should it be handled by which part? Payment App, Payment Method or Payment Mediator?

Reply to this email directly or view it on GitHub:
Received on Monday, 15 February 2016 06:02:30 UTC

This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 16:43:14 UTC