[Openid-specs-fapi] BG/Embedded SCA - Clinically free from OAuth

Anders Rundgren anders.rundgren.net at gmail.com
Sun Jul 26 16:21:28 UTC 2020


On 2020-07-26 17:52, Torsten Lodderstedt wrote:
<snip>
>>
>> My turn for a question: do you think FAPI/OBIE should follow BG?
> 
> Why should we? The whole embedded stuff is contrary to any security best practice.

Essentially you are saying that Apple Pay and EMV doesn't work.

Regards,
Anders





More information about the Openid-specs-fapi mailing list