[Openid-specs-fapi] Cross-Browser Payment Initiation Attack

Torsten Lodderstedt torsten at lodderstedt.net
Mon Jan 7 16:32:35 UTC 2019


Hi all,

Daniel and I wrote a document describing a potential kind of attack on redirect based flows used to authorize and initiate payments.

We would like to contribute this document to the working group.

kind regards,
Torsten.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: Cross-Browser Payment Initiation Attack.pdf
Type: application/pdf
Size: 583277 bytes
Desc: not available
URL: <http://lists.openid.net/pipermail/openid-specs-fapi/attachments/20190107/810d68c0/attachment-0001.pdf>
-------------- next part --------------



More information about the Openid-specs-fapi mailing list