Author: Jeremy Spilman 2014-03-01 06:26:39
Published on: 2014-03-01T06:26:39+00:00
Currently, a signed payment request is indicated by a green background while unsigned requests appear without any background. Requests with a certificate but missing or invalid signature also appear without the green background. There is an open bug (#3628) and pull request (#3684) to provide negative feedback in the form of a yellow background for requests with missing or invalid signatures. However, there is debate on whether this should be implemented in bitcoind. If an attacker can avoid the negative feedback by stripping the signature and setting pki_type to none, then there may not be a security benefit to singling out badly signed payment requests from unsigned ones. Therefore, the root problem could be that the positive feedback (green background) is not noticeable enough to the end user.In addition, there is a discussion on implementing the equivalent of HTTP Strict Transport Security for payment protocol to prevent the signature stripping attack. This may be a possible extension field that merchants are interested in.
Updated on: 2023-06-08T03:38:14.406943+00:00