Re: [web-nfc] Support ISODep

@anssiko @kenchris It might be worth mentioning the #1 application for "A better QR", right?

If you use a phone as a "token" which is extremely popular you can unfortunately be "phished" by trivial URL-tricks since there is no secure connection between the phone and the Web page asking for authentication.  With a scheme that provide the Web security context, phishing i thwarted and that without needing to talk in the other direction (this is still done OOB using HTTP).

It would also cover secure payments on the Web!

And potentially be much more convenient than QR since an "App" (which is a core part of the plot), is launched automatically.

-- 
GitHub Notification of comment by cyberphone
Please view or discuss this issue at https://github.com/w3c/web-nfc/issues/101#issuecomment-304683141 using your GitHub account

Received on Monday, 29 May 2017 15:07:10 UTC