Document privacy and security mitigations

[marcoscaceres]

As part of the CR process and through implementation/deployment, we've learned quite a bit about abuse cases. We should make sure we properly document all mitigations we've put in place without being hand-wavy - in the Privacy and Security section.

• use of SecureContext
• the allowpaymentrequest attribute on iframe
• canMakePayment() and throttling
• requiring user action on show()
• redacting address info add redactList for PaymentAddress (Part 1) #654

And so on... please add more to the above... those are just the ones off the top of my head.

cc @lknik.

[ianbjacobs]

Hi @marcoscaceres,

Want any help drafting text?

Ian

[marcoscaceres]

Help is always welcomed, @ianbjacobs.

[stpeter]

Both https://www.w3.org/TR/credential-management-1/ and https://www.w3.org/TR/encrypted-media/ have text we could emulate about secure contexts. The latter document especially has thorough sections on privacy and security.