Two quick additions- * Denial of service * Code injection Have a good day, hope London is amazing m -- Security Architect @ Blockstream mp@blockstream.com +491703311307 (Germany) +14159608938 (U.S) Signal, Wickr (martap). Sent from a mobile device, please excuse typos. > On Jul 8, 2016, at 8:42 AM, Manu Sporny <msporny@digitalbazaar.com> wrote: > > Hi all, > > I've started documenting potential security and privacy attacks against > the Web Payments API here: > > https://github.com/w3c/webpayments/wiki/Security-and-Privacy-Considerations > > It contains a number of attacks that I could think off just off of the > top of my head this morning. I'll try to add more attacks as I have > time. Clearly we'll need multiple thorough security reviews by experts > and the hope is that this page can prime their thinking wrt. the types > of attacks that the system we're building is susceptible to. > > -- manu >Received on Friday, 8 July 2016 13:11:07 UTC
This archive was generated by hypermail 2.4.0 : Friday, 17 January 2020 16:43:18 UTC