Re: [browser-payment-api] Should the API support field-level encryption? (#55) from Adrian Hope-Bailie on 2016-03-14 (public-webpayments-specs@w3.org from March 2016)

From: Adrian Hope-Bailie <notifications@github.com>
Date: Mon, 14 Mar 2016 04:51:51 -0700
To: w3c/browser-payment-api <browser-payment-api@noreply.github.com>
Message-ID: <w3c/browser-payment-api/issues/55/196276643@github.com>

Based on the discussion on the original thread I believe the consensus to be:

1. A standard for this is out of scope for the API specification
1. We should include some discussion on this in the Security Considerations
1. We should consider providing a mechanism for field-level encryption in the basic card payments specification as an example of how this could be done.

If that is the consensus then I'll close this issue and record that outcome.

---
Reply to this email directly or view it on GitHub:
https://github.com/w3c/browser-payment-api/issues/55#issuecomment-196276643

Received on Monday, 14 March 2016 11:52:27 UTC