Skip to content

Secure URL from Web Page #140

@cyberphone

Description

@cyberphone

This is a variant of what I have previously proposed: #128

This idea is though much simpler because it is only about retrieving a secured URL from a Web page.

Scenario: A Web page wants to present a URL through NFC. Only if the Web page and the URL to be presented belong to the same domain, NFC will actually emit the URL.

My belief is that this can support entirely "phish-free" OOB authentication schemes, but I have yet to perform a full-blown analysis.

Metadata

Metadata

Assignees

No one assigned

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions