|
> Credit card transactions may at some point involve cryptography, but at the bottom is the credit card number, and that can still be exposed. That's not really "at the bottom of things", for physical, customer-present transactions which I was talking about there. At the bottom of things are private keys stored on the card, which sign the transaction. Exposing the credit card number gets you no more than having someone's cryptocurrency wallet address, in fact a lot less as you can't look up their balance. The idea that credit card transactions are simply the handing over of a number, that a merchant can then do with whatever they like, is very outdated, though I guess still makes sense in countries that haven't moved on from magnetic strips. Yes, plugging in your card number online to buy things is still distressingly popular for various reasons, I agree we should definitely get rid of it. And we can! Either by reforming the credit card payment process in the sort of way Apple Pay online payments and Paypal already have (though they still use the numbers themselves, it's true), or by ditching cards entirely and going with things like open banking payments and pix, which tend to have OAuth under the covers (among other measures) that don't involve 'card' infrastructure at all. The question was how you design a system from the ground up that will "allow for secure payments without giving away something like a bank account # or debit card number". Well, I would use these sorts of technologies (that already exist and are in widespread use), rather than a blockchain. |