- From: Anders Rundgren <anders.rundgren.net@gmail.com>
- Date: Mon, 10 Apr 2017 14:39:39 +0200
- To: Web Payments IG <public-webpayments-ig@w3.org>
A WG member responded off-list with this to my Authority Object posting: https://tools.ietf.org/html/draft-ietf-oauth-discovery-06 It was very encouraging (for me at least...) seeing that the core concept is worked on by Microsoft, PING, etc. The draft also propose hosting encryption keys which in my take on the matter can be used for multiple purposes including eliminating tokenization. The differences are primarily on the formatting side where the OAuth scheme builds on meta data optionally featured as a base64-encoded JWT while Authority Objects use a single and mandatory clear text signature: https://mobilepki.org/webpay-acquirer/ Have this concept been applied to payments before? Anders
Received on Monday, 10 April 2017 12:40:16 UTC