894691 - [B2G][NFC][User Story]: NFC APIs for payments / Secure SIM / Wallet

Status: RESOLVED INVALID

(Firefox OS Graveyard :: NFC, defect)

Description

[Sandip Kamat]

NFC Payment APIs
1)     Web APIs to access and manage credentials in secure SIM.
2)     Web APIs for secure payment
3)     Enablers to create a Wallet application.

Comment 2

[Kai-Chih Hu [:khu]]

Based on the discussion with DT during NFC work week: 

1. We need more detailed information about payment from DT. (What kinds of payments flow?)

Comment 3

[Walter Chen[:ypwalter][:wachen]]

*And, maybe we can separate this user stories to more user stories since it's strange to have only one user story for Payment / secure SIM / Wallet. Even payment should be split

Comment 4

[Fernando Jiménez Moreno [:ferjm]]

(In reply to Sandip Kamat from comment #0)
> 2)     Web APIs for secure payment

Isn't the WebPayment API [1] enough for this?

[1] https://wiki.mozilla.org/WebAPI/WebPayment

Comment 5

[Ming Yin]

Assume that the NFC payment/ticketing applications(MasterCard/VISA) have already been installed on SIM card, here is the proposal for the prio 1 features that FFOS should support for such applications. 

1. Support NFC Card Emulation Mode
   1) The mobile device SHALL support Card-emulation as per ISO/IEC 14443 Type A and Type B PICC.
   2) Card Emulation mode SHALL be enabled as soon as the NFC hardware is turned on.
   3) Card Emulation Mode should work in flight-mode.
   4) Even the device is "locked" (display on but not logged in) the device SHALL allow transaction via card emulation mode.

2. Support UICC Access from Web App 
   1) The modem/baseband SHALL enable access to logical channels from the application layer.
   2) Accessing the UICC SHALL still be possible during the device is switched to flight mode.
   3) Firefox OS  SHALL provide Open Mobile SIM similiar API (per SIM Alliance spec; Transport Layer) for developers to use.  A complete description of the different functions is available in the SIM Alliance specification available here: http://www.simalliance.org/en?t=/documentManager/sfdoc.file.supply&e=UTF-8&i=1185787014303&l=0&fileID=1300467720550                                                                     Note: Reference implementations for Open Mobile APIs and access control exist for Android.
   4) The API SHALL prevent access to basic channel (channel 0).
Note: For implementation purposes this can be done by raising an exception."
   5) Access to the UICC SHALL be protected by the Access Control component or the Global Platform Access Control as described in "Global Platform-Secure Element Access Control v1.0"

3. Support web application triggering

   1) The mobile NFC Handset SHALL support HCI event EVT_TRANSACTION as per ETSI TS 102.622 
   2) The AID parameter SHALL be used during the process of tiggering the UI application.
REPHRASE: The format of the EVT_TRANSACTION must be compliant to the  "NFC Handset APIs & Requirements v3.0, section 4.5.1""
   3) For handling the EVT_TRANSCTION the handset SHALL support the mechanism described in "NFC Handset APIs & Requirements v3.0, section 4.5.3" and provide the related API

Comment 6

[Kai-Chih Hu [:khu]]

Payment is in v1.4.

Comment 7

[Kai-Chih Hu [:khu]]

Remove blocking-b2g flag from User Story bugs. Use whiteboard to indicate what FxOS version we target.

Comment 8

[Jean Gong :jgong]

Update whiteboard tag to follow format [ucid:{id}, {release}:p{1,2}, ft:{team-id}]

Comment 9

[Wesley Huang [:wesley_huang] (EPM) (NI me)]

1.4 user story supposedly needs to be complete before Sprint3.
Will communicate with team to reconfirm target milestone.

Comment 10

[Ken Chang[:kenkai]]

It isn't a 1.4 feature.

Comment 11

[psiddh]

Attachment: MozSecureElementManager.webidl

Comment 12

[psiddh]

Attachment: MozSecureElementObjects.webidl

Comment 13

[psiddh]

Attachment: FxOS_SecureElement_Architecture_v1.png

Comment 14

[psiddh]

- Updated the bug with the initial draft of SecureElement DOM APIs (webidl).
- Updated the SecureElement / Payment Architecture based on the consensus arrived during Poland workweek. 

Requesting for feedback.

Thanks, Sid

Comment 15

[Yoshi Cheng-Hao Huang [:allstars.chh][:allstarschh][:yoshi]]

This is a user story bug, please move your code to the Gecko bug, Bug 879861.

Comment 16

[psiddh]

Ok. Updated the Bug 879861. Not sure how I can remove attachments from this bug. Should I obsolete them? Please suggest.

Comment 17

[Walter Chen[:ypwalter][:wachen]]

since it resolved invalid, I will remove in-moztrap? mark