RE: [outreach] Key Principles / Desired outcomes…

My view is that if we use language such as transaction fraud or payments fraud instead of "stolen card" the more general language covers all types of schemes that could lead to fraud affecting the payment -- that would include identity theft, hacking, stealing credentials, counterfeiting credentials, etc.  I'm trying to avoid having to identify all of the specific fraud schemes and/or malicious activities that can lead to fraud.  If the terminology I've suggested doesn't accomplish this, please suggest other ideas.  I don't favor however, trying to list all of the different types of schemes and malicious activities like ID theft.  We will inevitably leave something out using this approach. 

-----Original Message-----
From: Joerg.Heuer@telekom.de [mailto:Joerg.Heuer@telekom.de] 
Sent: Friday, February 06, 2015 10:20 AM
To: ryladog@gmail.com; Swendseid, Claudia; chaals@yandex-team.ru; public-webpayments-ig@w3.org
Subject: RE: [outreach] Key Principles / Desired outcomes…

Hello!

Shouldn't we add 'Identity theft' in general? If someone malicious finds ways to impersonate someone else it could always be good enough to get money from wherever that someone else has stored it. This might include declaring a 'card' being declared stolen and knowing enough details about a person to convince the service people to take actions in behalf of the legal owner...

I can help to break the cases down - but there will be a lot of them!

Cheers,
 Jörg

-----Original Message-----
From: Katie Haritos-Shea GMAIL [mailto:ryladog@gmail.com] 
Sent: Freitag, 6. Februar 2015 17:01
To: 'Swendseid, Claudia'; chaals@yandex-team.ru; 'Web Payments IG'
Subject: RE: [outreach] Key Principles / Desired outcomes…

I agree with that suggestion Claudia



* katie *
 
Katie Haritos-Shea 
Senior Accessibility SME (WCAG/Section 508/ADA/AODA)
 
Cell: 703-371-5545 | ryladog@gmail.com | Oakton, VA | LinkedIn Profile | Office: 703-371-5545

-----Original Message-----
From: Swendseid, Claudia [mailto:claudia.swendseid@mpls.frb.org] 
Sent: Wednesday, February 4, 2015 11:12 AM
To: chaals@yandex-team.ru; Web Payments IG
Subject: RE: [outreach] Key Principles / Desired outcomes…

One small suggestion:  

I wouldn't limit the reduction in fraud objective to "stolen card" transaction fraud as there are other forms of payments fraud that are problematic on the Web and fraud will evolve going forward into new schemes.  So, I'd suggest a more general statement along the lines of "A great reduction in payment transaction fraud."  


Claudia S. Swendseid
Senior Vice President
Federal Reserve Bank of Minneapolis
Phone: 612-204-5448
Cell: 612-655-7523
Email:  Claudia.swendseid@mpls.frb.org
      




-----Original Message-----
From: chaals@yandex-team.ru [mailto:chaals@yandex-team.ru]
Sent: Wednesday, February 04, 2015 7:19 AM
To: Web Payments IG
Subject: [outreach] Key Principles / Desired outcomes…

Hi,

from the agenda we had a strawman set of "features of a successful web payment". I think as a high-level statement of what we are doing as a group, this is a helpful thing to record and use in a document…

[[[
- A fast and significant adoption of the technology (>100M+ in the first two years).
- Level playing field (aka fair competition) for merchants, payment providers, customers, software vendors, and payment networks.
- A great reduction in "stolen card" transaction fraud.
- A great reduction in the amount of custom software that a merchant must write to integrate with new payment products.
- Removal of the need for a merchant to hold on to sensitive customer data.
- Greatly reduced payment provider switching costs for customers and merchants.
]]]

>From the discussion on Monday morning I tried to extract things we should consider adding to that list:

- Does not add (ideally reduces) the time required to make a payment
- Enables value-added services to help payers
- Requires as little new technology and as few standards as possible
- Enables anyone to understand what they are doing (esp. its cost) when they make a payment to another person (or system or company or object)
- Does not interfere with the ability to meet regulatory requirements
- Enables people to "take their money out of the system"
- Can be delegated to an "agent" (device, automated process, etc).

cheers

Chaals

--
Charles McCathie Nevile - web standards - CTO Office, Yandex chaals@yandex-team.ru - - - Find more at http://yandex.com



This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential or proprietary information.  If you are not the intended recipient, immediately contact the sender by reply e-mail and destroy all copies of the original message.




This e-mail message, including attachments, is for the sole use of the intended recipient(s) and may contain confidential or proprietary information.  If you are not the intended recipient, immediately contact the sender by reply e-mail and destroy all copies of the original message.

Received on Friday, 6 February 2015 16:26:18 UTC