- From: Anders Rundgren <anders.rundgren.net@gmail.com>
- Date: Mon, 21 Sep 2015 08:35:04 +0200
- To: Web Payments CG <public-webpayments@w3.org>, "public-webpayments-comments@w3.org" <public-webpayments-comments@w3.org>
On 2015-09-18 21:53, Ian Jacobs wrote:
> Dear IG,
>
> *** 21 SEPTEMBER IS AN IMPORTANT CALL FOR MAKING PROGRESS ON THE WORKING GROUP CHARTER ***
After looking fairly deeply into the matter it seems that the "Super-Providers"
can achieve significant improvements in "Security" by simply adopting FIDO solutions.
The other quality factor ("Convenience"), is essentially already in place (PayPal,
Alibaba, etc.)
However, creating a comparable user experience and security for a distributed net
of payment providers (Banks) would be a daunting task, way more complex than the
proposals that so far have been aired in this context.
Why is that? Because the "Super-Provider" concept keeps all critical information in
one place and is [apparently] also trusted for storing customers' card data, enabling
them to do things in a simple and secure fashion, while a distributed system must
secure every connection and (in a yet not described fashion), provide a trusted UI.
A distributed system would require a trust infrastructure like PKI to scale.
Building something on top of already broken systems like WPIG suggests, is unlikely
to get industry support.
thanks,
Anders
Received on Monday, 21 September 2015 06:35:38 UTC