Closed stephenmcgruer closed 1 year ago
SPC already has mitigations against on-path attacks, where an attacker positions themselves between the user and a valid merchant website. However we did not previously explain how a Relying Party can detect this, so add a line about it.
Preview | Diff
(ipr checks currently failing because Google needs to re-join the WPWG post-recharter. Attempting to get that addressed today)
SPC already has mitigations against on-path attacks, where an attacker positions themselves between the user and a valid merchant website. However we did not previously explain how a Relying Party can detect this, so add a line about it.
Preview | Diff