Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

RFC007 Payment Wallet Attestation -schema contains both masked pan and iban #118

Open
endimion opened this issue Nov 29, 2024 · 1 comment
Open

RFC007 Payment Wallet Attestation -schema contains both masked pan and iban #118

endimion opened this issue Nov 29, 2024 · 1 comment
Assignees
@georgepadayatti @ntsbs
Labels
EWC RFC 007 Payment Wallet Attestation

Comments

@endimion
Copy link
Collaborator

In section 8 the schema contains both masked PAN and IBAN data
image

not sure this is intentional? As this might leak user data (e.g. I want to pay with my card but I also disclose my IBAN to the merchant - when using the Payment Wallet Attestation in a merchant led flow).

Is this intentional and we assume that SD should be applied and only one of the attributes disclosed? or is this a typo and each Payment Attestation should only be connected to one payment account (CARD or IBAN)
@endimion endimion added the EWC RFC 007 Payment Wallet Attestation label Nov 29, 2024
@stefan-kauhaus stefan-kauhaus mentioned this issue Jan 3, 2025
Draft
@stefan-kauhaus
Copy link

I addressed this in #125.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@georgepadayatti georgepadayatti

@ntsbs ntsbs

Labels
EWC RFC 007 Payment Wallet Attestation
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@endimion @georgepadayatti @ntsbs @stefan-kauhaus