[Openid-specs-mobile-profile] [E] Re: [Openid-specs-fapi] FYI: OpenID Implementer’s Drafts of Four MODRNA Specifications Approved

Hjelm, Bjorn Bjorn.Hjelm at VerizonWireless.com
Fri May 12 17:00:06 UTC 2017

We would appreciate any input on any of the four specifications. Please post the comments to the MODRNA Issue Tracker (https://bitbucket.org/openid/mobile/issues).


From: Openid-specs-fapi [mailto:openid-specs-fapi-bounces at lists.openid.net] On Behalf Of Tom Jones via Openid-specs-fapi
Sent: Wednesday, May 10, 2017 8:49 AM
To: Nat Sakimura; Financial API Working Group List
Subject: [E] Re: [Openid-specs-fapi] FYI: OpenID Implementer’s Drafts of Four MODRNA Specifications Approved

Yes.  Especially man-in-browser.

But as the sole objector to those specs i would like to avoid exchanging any personal data between FIs.
It was the spec that exchanged personal data between phone companies that i found objectionable.
I would wish that any future vote not lump multiple specs into one ballot.

On Wed, May 10, 2017 at 2:45 AM, Nat Sakimura via Openid-specs-fapi <openid-specs-fapi at lists.openid.net<mailto:openid-specs-fapi at lists.openid.net>> wrote:
Now that they are Implementer's draft and the IPR is locked in, we can safely refer to them. User questioning and Backchannel login are really interesting for us. They can mitigate the risk of man-in-the-browser. It has been a bit unfortunate timing-wise, but we should consider adding one of them at least in the next revision. Is there an appetite to bite them?

Nat Sakimura
Research Fellow, Nomura Research Institute
Chairman of the Board, OpenID Foundation
Openid-specs-fapi mailing list
Openid-specs-fapi at lists.openid.net<mailto:Openid-specs-fapi at lists.openid.net>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-mobile-profile/attachments/20170512/e39c3630/attachment.html>

More information about the Openid-specs-mobile-profile mailing list