15:58:32 <RRSAgent> RRSAgent has joined #wpwg-spc
15:58:32 <RRSAgent> logging to https://www.w3.org/2021/04/26-wpwg-spc-irc
15:58:38 <Ian> Meeting: SPC Task Force
15:58:40 <Ian> Chair: Ian
15:58:54 <Ian> Agenda: https://lists.w3.org/Archives/Public/public-payments-wg/2021Apr/0007.html
15:59:06 <Ian> agenda+ scope document
15:59:38 <Clinton> Clinton has joined #wpwg-spc
15:59:42 <Ian> agenda+ Next meeting
15:59:46 <Ian> present+
15:59:49 <Ian> present+ Clinton_Allen
16:00:22 <Ian> present+ Tomasz_Blachowicz
16:00:23 <mweksler> mweksler has joined #wpwg-spc
16:00:30 <Ian> present+ Michel_Weksler
16:00:44 <Ian> present+ Rolf_Lindemann
16:01:09 <Ian> present+ Stephen_McGruer
16:01:37 <Ian> present+ Fawad_Niser
16:01:40 <Ian> present+ Fawad_Nisar
16:01:43 <Ian> present- Fawad_Niser
16:01:49 <Ian> present+ Werner_Bruinings
16:01:57 <Ian> present+ Jonathan_Vokes
16:02:22 <Ian> zakim, take up item 1
16:02:22 <Zakim> agendum 1 -- scope document -- taken up [from Ian]
16:02:29 <Ian> present+ Praveena_Subrahmany
16:02:43 <Ian> -> https://github.com/w3c/secure-payment-confirmation/blob/gh-pages/scope.md Draft scope document
16:03:37 <tm__> tm__ has joined #wpwg-spc
16:04:13 <Ian> present+ Laura
16:04:26 <Ian> [Michel walks through the document]
16:04:26 <praveena> praveena has joined #wpwg-spc
16:04:29 <Rolf> Rolf has joined #wpwg-spc
16:04:36 <Ian> present+ Sameer_Tare
16:04:44 <smcgruer_[EST]> q+
16:05:01 <Ian> queue=Tomasz, smcgruer
16:05:25 <Ian> -> https://github.com/w3c/secure-payment-confirmation/pull/55 Pull request 55
16:05:47 <SameerT> SameerT has joined #wpwg-spc
16:07:24 <Ian> regrets+ Adrian_Hope-Bailie
16:08:22 <Ian> -> https://github.com/w3c/secure-payment-confirmation/blob/gh-pages/scope.md#unique-features-of-spc Unique features of SPC
16:11:03 <Ian> Tomasz: regarding "Scalable" could also add "Ubiquitous"
16:11:58 <Ian> Tomasz: Regarding "Transaction confirmation" suggest s/3DS/SCA
16:12:19 <Ian> ...see also pull request for more suggestions
16:12:26 <Ian> ...it's not only to fulfill regulatory requirements
16:12:31 <smcgruer_[EST]> +1 to Ubiquitous, if that helps us get away from 'across all PSP's merchants' to 'across all merchants'. (I think the latter is a long path to get there and we should start smaller such as PSP-bound, but we should keep it as a path in mind)
16:12:43 <Ian> q+ to make a comment after the list
16:13:53 <smcgruer_[EST]> q- later
16:14:06 <Ian> ack me
16:14:06 <Zakim> Ian, you wanted to make a comment after the list
16:14:39 <Tomasz> Tomasz has joined #wpwg-spc
16:15:09 <Ian> IJ: I propose to add "scalable and ubiquitous" to the definition
16:15:17 <Tomasz> +1
16:15:19 <mweksler> +1
16:15:20 <Rolf> +1
16:15:20 <smcgruer_[EST]> +1
16:15:21 <praveena> +1
16:15:40 <Ian> q?
16:15:45 <SameerT> q+ : comment for the front-end dev - Make it generic since in 3DS world, the merchants simply allow the issuer iframe to present content to the user
16:16:06 <Ian> ack SameerT
16:16:06 <Zakim> SameerT, you wanted to say comment for the front-end dev - Make it generic since in 3DS world, the merchants simply allow the issuer iframe to present content to the user
16:16:17 <Tomasz> q-
16:16:18 <smcgruer_[EST]> q-
16:16:21 <smcgruer_[EST]> q- smcgruer
16:16:53 <Ian> SameerT: Regarding front-end development built, I think that we should either generalize to apply to both the merchant and RP, or remove it.
16:17:36 <Ian> Ian: PH also would benefit
16:18:09 <Ian> Sameer: Note that in 3DS use case, deployment is simple (just an iframe)
16:18:16 <Ian> ...the issuer presents the content through the iframe
16:18:52 <Ian> Ian: Perhaps we could say: "Because the browser or secure hardware controls the display, whoever would ordinarily open UX for authentication should have a simpler deployment."
16:19:12 <Ian> Sameer: Yes, something like that.
16:19:16 <Ian> q?
16:19:59 <Ian> -> https://github.com/w3c/secure-payment-confirmation/blob/gh-pages/scope.md#definitions Definitions
16:20:02 <Ian> IJ: Please have a look
16:20:17 <Tomasz> q+
16:20:29 <Ian> ack Tomasz
16:20:45 <Ian> Tomasz: What is the difference between "Credential" and "Assertion" here?
16:22:10 <Ian> Rolf: In WebAuthn, the assertion is different from the credential. In username/password, the assertion is the same as the credential.
16:22:22 <Ian> ...all these terms are overloaded and used heavily.
16:22:40 <tm> tm has joined #wpwg-spc
16:22:41 <Ian> ...I think it's ok to refer to the Credential and then you do get() and get back an Assertion
16:22:49 <smcgruer_[EST]> +1 to Rolf
16:24:30 <Ian> Tomasz: What if we use the Credential Management API?
16:24:39 <Ian> Ian: That is a possibility. Anything here preclude that?
16:24:58 <Ian> -> https://wicg.github.io/web-otp/ WebOTP
16:25:22 <Ian> Tomasz: Also based on the credential management API
16:28:17 <smcgruer_[EST]> Perhaps: "SPC Credential Identifier : An identifier generated during enrollment and stored by the Relying Party in association with a payment instrument."
16:28:25 <smcgruer_[EST]> (Does not preclude multiple being created)
16:30:07 <Ian> Stephen: There aren't really use cases yet...
16:30:37 <Ian> ...maybe talk about "payment systems"
16:31:12 <Ian> zakim, close item 1
16:31:12 <Zakim> agendum 1, scope document, closed
16:31:13 <Zakim> I see 1 item remaining on the agenda:
16:31:13 <Zakim> 2. Next meeting [from Ian]
16:31:14 <Ian> zakim, take up item 1
16:31:14 <Zakim> agendum 1 -- scope document -- taken up [from Ian]
16:31:23 <Ian> 3 May
16:32:00 <Ian> RRSAGENT, make minutes
16:32:00 <RRSAgent> I have made the request to generate https://www.w3.org/2021/04/26-wpwg-spc-minutes.html Ian
16:32:04 <Ian> RRSAGENT, set logs public
16:38:54 <jv> jv has joined #wpwg-spc
16:56:44 <Ian> rrsagent, bye
16:56:44 <RRSAgent> I see no action items