Re: Credit-card payments on the Web - Stuck in its 1998 form from Joseph Potvin on 2013-10-05 (public-webpayments@w3.org from October 2013)

From: Joseph Potvin <jpotvin@opman.ca>
Date: Sat, 5 Oct 2013 09:13:08 -0400
To: Anders Rundgren <anders.rundgren.net@gmail.com>
Cc: Web Payments CG <public-webpayments@w3.org>
Message-ID: <CAKcXiSrezptnSd3_=eCh8u=ZvZFQej0bu-oY1_gaaf-n17x1Ew@mail.gmail.com>

RE: "What's completely missing are requirements.  However, AFAIK you are
not allowed to mention possible requirements in public forums ... How are
you supposed to break the ice?"

Anders, Other than the usual NDAs that restrictive companies typically rely
upon for their employees and contractors, what issue are you concerned
about that's in the way?

High level functional req's are getting documented here:
https://payswarm.com/specs/source/use-cases/  ... though yes, I wish to
know if I've missed noticing where the webpayments technical specs are
being assembled  & shared presently?

In the interest of creating standards-compliant UML2 documentation for
web-payments, Papyrus is a free/libre/open industrial-strength
standards-compliant solution
http://www.papyrusuml.org/scripts/home/publigen/content/templates/show.asp?P=130&L=EN&ITEMID=4

RE: "How are you supposed to break the ice?

Very much like first OpenStack (free/libre cloud software stack) & now
OpenCompute (free/libre data centre hardware) are, at this very moment,
breaking the ice on data centres.  And they draw upon intelligent defensive
initiatives like the OpenInventionNetwork.com, PublicPatentFoundation
pubpad.org.org, DefensivePublications.org,  the Software Freedom Law Center
www.softwarefreedom.org, etc.

How about this story for a metaphor:
http://web.mit.edu/press/2013/simple-scheme-for-self-assembling-robots.html

Joseph Potvin

On Sat, Oct 5, 2013 at 2:10 AM, Anders Rundgren <
anders.rundgren.net@gmail.com> wrote:

> Credit-card payments on the web haven't taken a single security-related
> step forward
> since 1998 when 3D secure was conceived.
>
> How come?  There's no suitable web technology available for this purpose
> and
> banks do not build browsers.  In addition, banks do not contribute to
> standardization
> in open forums or to open source projects.
>
> Can W3C do something here?  I don't think because there is too much tension
> regarding payments.  What is (at least theoretically...) possible is
> creating neutral
> web technology allowing banks to build their own payment systems.
>
> What's completely missing are requirements.  However, AFAIK you are not
> allowed
> to mention possible requirements in public forums if you are working for a
> major
> US tech company due to IPR and product considerations.
>
> How are you supposed to break the ice?
>
> Anders
>
>

<http://goo.gl/Ssp56>

Received on Saturday, 5 October 2013 13:13:59 UTC