Nothing Special   »   [go: up one dir, main page]
Skip to content

javifernandez/secure-payment-confirmation

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

368 Commits
.github/workflows
.github/workflows
 
 
sequence-diagrams
sequence-diagrams
 
 
.gitignore
.gitignore
 
 
.pr-preview.json
.pr-preview.json
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE.md
LICENSE.md
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
accessibility-checklist.md
accessibility-checklist.md
 
 
developer-guide-authentication.png
developer-guide-authentication.png
 
 
developer-guide.md
developer-guide.md
 
 
explainer-diagram.png
explainer-diagram.png
 
 
explainer.md
explainer.md
 
 
payment.png
payment.png
 
 
requirements.md
requirements.md
 
 
scope.md
scope.md
 
 
security-privacy-questionnaire.md
security-privacy-questionnaire.md
 
 
spec.bs
spec.bs
 
 
status-ED.include
status-ED.include
 
 
status-FPWD.include
status-FPWD.include
 
 
status-WD.include
status-WD.include
 
 
w3c.json
w3c.json
 
 

Repository files navigation

Secure Payment Confirmation

Secure Payment Confirmation (SPC) is a Web API to support streamlined authentication during a payment transaction. It is designed to scale authentication across merchants, to be used within a wide range of authentication protocols, and to produce cryptographic evidence that the user has confirmed transaction details. The W3C Web Payments Working Group is developing SPC.

Links:

Screenshot

FAQ

Q. Who can validate the SPC response besides the actual Relying Party (RP)?

An SPC challenge bundles transaction details with transaction-specific dynamic data from the Relying Party. An SPC response includes a signature over that challenge. Validation in SPC refers to the verification of that signature using the credential public key. A Relying Party can choose to share the credential public key with another party (e.g., a card network or payment service provider) via out-of-band communication to enable that party to validate the SPC assertion.

Acknowledgements

Contributors:

  • Adrian Hope-Bailie (Coil)
  • Benjamin Tidor (Stripe)
  • Danyao Wang (Google)
  • Christiaan Brand (Google)
  • Rouslan Solomakhin (Google)
  • Nick Burris (Google)
  • Gerhard Oosthuizen (Entersekt)

About

Explainer for Secure Payment Confirmation

w3c.github.io/secure-payment-confirmation/

Resources

Readme

License

View license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Bikeshed 99.1%
  • Makefile 0.9%