clarification - 4.1.2 Secure transaction API details

Question

clarification - 4.1.2 Secure transaction API details

Closed this issue 8 years ago · 2 comments

in the following text : "To avoid context swapping, it is mandatory that the non-repudiation message contains specific data for the requested transaction with the requesting party, the purpose of the transaction and the date of the operation."

It is not clear for a non-expert what is the 'non-repudiation message'. How do you correlate that with the API proposal ?
--> I would prefer that you first expose the API, then detail the parameters/notions and after give rationale or refinements of it.

Answer 1 · 2016-07-12T12:04:59.000Z

I propose to manage this issue through two actions :

transaction context = non repudiation message
move the security elements from 4.1.2 to a new section 4.1.6 Security considerations

Answer 2 · 2016-07-25T22:11:40.000Z

No feedback => closing, will reopen if needed