[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Taler] "one click"
|
From: |
Anders Rundgren |
|
Subject: |
Re: [Taler] "one click" |
|
Date: |
Thu, 6 Oct 2016 10:06:55 +0200 |
|
User-agent: |
Mozilla/5.0 (Windows NT 10.0; WOW64; rv:45.0) Gecko/20100101 Thunderbird/45.4.0 |
On 2016-10-03 23:41, Jeffrey Burdges wrote:
I noticed this NYT article that couched the Payment WG's spec as being
about "one click" :
http://www.nytimes.com/2016/09/26/business/dealbook/what-if-one-click-buying-were-internetwide.html?_r=0
It's not actually possible to do one click shopping on a merchant's site
securely. You need interactions with the payment mediator and payment
app.
There are other noteworthy stuff in the article as well:
"On the security side, rather than sending along all the credit card details,
the browser will generate a one-time payment token that will avoid leaving
your credit card number in countless databases around the world"
The _browser_ performs tokenization?
Anders
Interestingly, there is actually a way to do one click shopping though
if you move the buy button off the merchant's site entirely and into the
browser itself. If a merchant sends a contract, then you display the
payment mediator, shipping address information, and payment app in an
overlay window separate from the merchant controlled window. This
contains a buy button, so the user can verify information like shipping
visually, and push buy without necessarily changing anything.
Just though that was funny,
Jeff
- Re: [Taler] "one click",
Anders Rundgren <=