[bisq-network/proposals] Self certification of bank account details using ID verified digital certificates (#79)

reipichu notifications at github.com
Fri May 24 13:08:17 UTC 2019


This would be a good solution for users who have access to these type of certificates, so long as the certificates do not reveal too much more unnecessary information, as you mentioned.

An important requirement that I don't see in the proposal (sorry if I missed it) is that Bisq would need to validate the chain of trust to the signing certificate authority, to ensure that the certificate is not self-signed or forged. 

This means we would need to integrate the CA certificates into the client and have a process for adding or revoking new CA certificates. It would be very important to make sure that our system for doing so is secure, because if a scammer can get a fake CA certificate under their control into the Bisq CA store then they would be able to scam traders for even larger amounts, since the seller would have a false sense of security.


-- 
You are receiving this because you are subscribed to this thread.
Reply to this email directly or view it on GitHub:
https://github.com/bisq-network/proposals/issues/79#issuecomment-495619673
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.bisq.network/pipermail/bisq-github/attachments/20190524/2a280452/attachment.html>


More information about the bisq-github mailing list