Re: Privacy in Web Payments [Was: Re: Nigeria launches national electronic ID cards]

On 09/11/2014 12:18 AM, Steven Rowat wrote:
> So, while I agree that privacy will central to the credentials work,
> I think it's closer to being evenly split between payments and
> credentials.


> IMO this was made clear by the example demonstration in the Istanbul
> IG workshop video, in that it showed that credentials standards and 
> payments standards will be used intertwined and all in one quick 
> interaction, within seconds and sometimes milliseconds of each other.
> So I don't think it's going to be easy to say -- or at least, predict
> at this point -- which privacy issues relate to the credentials and
> which to the payments.

Yes, I think you're right. We regularly go through attack exercises at
Digital Bazaar to see where the weak points are in the system wrt.
denial of service attacks, privacy attacks, cryptographic attacks,
pervasive monitoring attacks, etc. It takes constant attention to detail.

-- manu

Manu Sporny (skype: msporny, twitter: manusporny, G+: +Manu Sporny)
Founder/CEO - Digital Bazaar, Inc.
blog: The Marathonic Dawn of Web Payments

Received on Friday, 19 September 2014 01:23:14 UTC