- From: David Chadwick <d.w.chadwick@kent.ac.uk>
- Date: Wed, 23 Dec 2015 10:31:41 +0000
- To: public-web-security@w3.org
I would have thought that the battle of control was fought and won years ago. Essentially the credit card issuers control the system, since they pay the RP, give the users credit, and learn about all the users' transactions. I suspect they would love to learn more about these transactions as well, but that would violate the users' privacy. Once the system will allow credit card issuers to issue electronic tokens rather than have the user type in credit card details, it will reduce fraud and cost. FIDO is able to do this. David On 23/12/2015 09:35, Anders Rundgren wrote: > On 2015-12-23 10:30, Mountie Lee wrote: >> I understand this is also touching SOP issue of Web. > > Indeed it does. > > >> who control the web? user? server? > > Or as I would like to put it: how can third-parties add something new > and cool to the Web/Browser ecosystem? > > Anders > >> >> >> On Wed, Dec 23, 2015 at 6:26 PM, Jeffrey Walton <noloader@gmail.com >> <mailto:noloader@gmail.com>> wrote: >> >> >> that means we don't need server assist to communicate between >> Web and App? >> > >> > I have no idea how all pieces fit together. >> > >> > I also don't know the process for introducing a custom >> wallet/payment >> > system. >> >> I would not expect one. >> >> There's a big battle going on behind the scenes. Its about who >> controls the payment information and the data. The data from all >> those >> transactions will be worth billions. >> >> Companies like Apple, Google and Microsoft want it, while other >> companies like mobile OEMs and carriers want it. The first casualty >> appeared to be Isis/Softcard. >> >> Jeff >> >> >> >> >> -- >> Mountie Lee >> >> PayGate >> CTO, CISSP >> Tel : +82 2 2140 2700 >> E-Mail : mountie@paygate.net <mailto:mountie@paygate.net> >> > > >
Received on Wednesday, 23 December 2015 10:30:32 UTC