[w3c/webpayments-methods-tokenization] Document threat model (#36) from ianbjacobs on 2018-01-26 (public-webpayments-specs@w3.org from January 2018)

From: ianbjacobs <notifications@github.com>
Date: Fri, 26 Jan 2018 12:00:00 -0800
To: w3c/webpayments-methods-tokenization <webpayments-methods-tokenization@noreply.github.com>
Cc: Subscribed <subscribed@noreply.github.com>
Message-ID: <w3c/webpayments-methods-tokenization/issues/36@github.com>

Creating an individual issue from the list in #26 in reference to:
  https://github.com/w3c/webpayments-methods-tokenization/wiki/Tokenized-Card

"It would be good to define the threat model here so that we can improve the security considerations. The authors might want to look at https://www.owasp.org/index.php/Threat_Risk_Modeling from OWASP or a similar document."

-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/w3c/webpayments-methods-tokenization/issues/36

Received on Friday, 26 January 2018 20:00:46 UTC