A bunch of different people either have implemented or are implementing
BIP70 at the moment. Here's a bunch of things I've been telling people in
response to questions. At some point I'll submit a pull req with this stuff
in but for now it's just an email.
*Error handling during signature
At the moment BIP70 specifically requires that a request be rejected
if validation fails, so that should be fixed that sooner rather than
The recipient must verify the certificate chain according to
[RFC5280] and reject the PaymentRequest if any validation failure
*Extended validation certs*
When a business is accepting payment, showing the name of the business is
usually better than showing just the domain name, for a few reasons:
1. Unless your domain name *is* your business name like blockchain.info,
it looks better and gives more info.
Mail list logo