- From: Anders Rundgren <anders.rundgren.net@gmail.com>
- Date: Mon, 13 Dec 2021 20:25:55 +0100
- To: public-privacy@w3.org
Hi Guys, As requested: I don't think a privacy evaluation at this late stage really is meaningful since the core privacy issue (handing over card numbers to untrusted third-parties like merchants), actually was raised before W3C adopted SPC as a work-item, but didn't receive a single comment: https://github.com/w3c/secure-payment-confirmation/issues/32 Apple Pay versus SPC from a privacy perspective: https://github.com/w3ctag/design-reviews/issues/675#issuecomment-964273692 Apple and 100+ lesser known vendors never had to bother about https://github.com/w3c/secure-payment-confirmation/issues/77 because the wallet concept keeps key handles entirely local. FWIW, I have provided an alternative specification which address these issues and a whole bunch of other things as well: https://github.com/mozilla/standards-positions/issues/570#issuecomment-972578433 Best Anders
Received on Monday, 13 December 2021 19:26:11 UTC