W3C home > Mailing lists > Public > www-p3p-policy@w3.org > October 2006

User side policy & handling of credentials

From: Almut Herzog <almhe@ida.liu.se>
Date: Tue, 31 Oct 2006 17:39:42 +0100
Message-ID: <45477C4E.4060409@ida.liu.se>
To: www-p3p-policy@w3.org

Hi,

I wonder if it is possible/sensible to express the following policies in
P3P/APPEL:

User Alice will only submit her credit card information to sites that
have the XYZ credential.

User Alice only does business with web sites that are ABC-certified (=
have the ABC credential).

If someone could create these rules, e.g. using the JRC editor, I would
be most grateful. If it is not sensible to have such rules, please give
me a comment.

And a general question: Why is payment information such as credit card
number, expiry date, bearer name etc. not part of the P3P user data
structures?

Cheers,
/Almut
Received on Tuesday, 31 October 2006 21:31:15 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:01:09 UTC