#1080: [wg/payments] Web Payments Working Group Charter

Visit on Github.

Opened Apr 14, 2025

This issue was created because the 'horizontal review requested' label was added to § https://github.com/w3c/strategy/issues/501

This review is requested prior to the Advisory Committee Review.

Work has started on a new charter for the Web Payments WG.

Status: As of 28 March 2025 we should send an advance notice to the AC. We are not yet ready for horizontal review.

Charter Review

WPWG 2025 charter

WPWG 2025 charter source

diff from charter template

diff from previous charter

chair dashboard

The charter has changed significantly both in content and into align with the template (so a generated diff is likely not useful). The primary changes are:

  • Extended motivation and background section that takes into account the WG's longstanding work on digital wallets for payments (via Payment Request API) and emerging work on digital wallets for identity payments. The goal of this revision of the charter is to position the WG as being able to contribute (if asked) to discussions about payments in the digital credentials ecosystem.
  • Similarly, the scope section has been extended to include digital wallets more explicitly.
  • There is a new section on tentative deliverables including a concrete proposal from Google for the payment facilitation link type, as well as an opening for a profile for payments in the digital credentials ecosystem.
  • Changes to coordination
    • Added: Federated ID WG and OpenID Foundation (related to digital wallets
    • Added: WHATWG for payment facilitation link type
    • Removed: Web App Security WG. We don't interact with them in practice.
    • Removed: Berlin Group (though we periodically have conversations with them; there is no dependency at this point). chair dashboard

What kind of charter is this? Existing WG recharter.

  • If this is a charter extension or revision, any issue discussion:

Horizontal Reviews: apply the Github label "Horizontal review requested" to request reviews for accessibility (a11y), internationalization (i18n), privacy, security, and TAG.

Communities suggested for outreach

Known or potential areas of concern

Please send feedback to public-payments-wg@w3.org (archive).

Anything else we should think about as we review?

cc @Goosth @mountainhippo

Charter facilitator(s)

Discussions

Log in to see TAG-private discussions.

Discussed Apr 28, 2025 (See Github)

Max: They've updated the charter and extended the motivation. They want to extend the charter to include digital wallets and link rel=paymentrequest. (https://github.com/w3ctag/design-reviews/issues/1015). Not sure if we're satisfied with the payment link type. Don't see other issues.

Jeffrey: We said they should talk about paymentrequest in this charter.

Martin: Confusion about capabilities and some other things. Modeling it as PaymentRequest is interesting and avoids most of the problems, mostly.

Jeffrey: Any concerns about digital wallets in here?

Marcos: A bit of a far cry to put the wallets in there. PaymentRequest itself can have multiple wallets appear. It's trying to say something without saying anything. Threat of EU regulation w.r.t. the digital credentials API. doesn't make an argument about the current model being deficient.

Jeffrey: It is just a charter. Do we need them to take anything into account?

Marcos: Confusion between digital wallets, identity, and payments. Framing around the wallet providing the experience. Vs in the credentials world where the credential provider provides the experience. Like with payments having a PaymentHandler providing a representation of the proof of payment. Worry that the scope might not understand what digital wallets are, especially in the framing at the top. Moves into UI, unnecessarily. Encroaches into identity and payments. But that's ok because we don't want Digital Credentials to be used for payment.

Jeffrey: They have the appropriate coordination with Federated Identity Working Group. We could emphasize that any division of the space should be intentional.

Marcos: This is the right group to hold that discussion.

Jeffrey: The deliverable/work is still tentative, not firm.

Marcos to draft a comment.

Discussed May 5, 2025 (See Github)

Jeffrey: I think that we were mostly OK with this. There was a question last week about the interaction with wallets and identity.

Skipping this one for the moment. Waiting for Marcos to offer a draft comment.

Discussed May 12, 2025 (See Github)

Marcos was going to draft comments.

We'll come back next week.

Jeffrey: Security and i18n replied 2 weeks ago: https://github.com/w3c/strategy/issues/501

Discussed May 19, 2025 (See Github)

Max: Waiting for Marcos. He had some comments about the digital wallet that might lead to some clarifications. He was going to draft comments, asking them to define what a wallet is.

Dan: Jeffrey noted that Marcos was tasked with this already. Posted a note in slack as a reminder.

Discussed May 19, 2025 (See Github)

Max: Waiting for Marcos. He had some comments about the digital wallet that might lead to some clarifications. He was going to draft comments, asking them to define what a wallet is.

Dan: Jeffrey noted that Marcos was tasked with this already. Posted a note in slack as a reminder.

Discussed May 26, 2025 (See Github)

DanA: Skipping for now. Marcos to draft comment.

Discussed Jun 2, 2025 (See Github)

Marcos promised to draft something for this issue.

Discussed Jun 9, 2025 (See Github)

Jeffrey: The Team has sent the AC review for this, so the review is up to AC reps.

Max: We want clarification about digital wallets in the charter. Not technical concerns.

Jeffrey: It's about how much they coordinate or take over the design from the identity WGs.

Max: Scope includes digital wallets. If Marcos has time, he should finish his work.

Max: I'll propose a comment in Brainstorming and let Marcos check.

Discussed Jun 16, 2025 (See Github)

Torgo: Marcos, this is you.

Marcos: I wrote a bunch of stuff

Torgo: Martin said looks good, Jeffrey had some points. Marcos do you want to add anything?

Marcos: I need to catch up

Torgo: What you wrote is great, Jeffery and Martin had suggestions that we could fold in.

Marcos: Yeah. I'm just looking at Martin's comment. It's complicated because there's the working group and interest group, and this feels like an interest group thing.

Martin: The issue seemed like it was hanging, I don't know about Jeffery's comments

Marcos: It looks like we need a bit of redrafting here.

Torgo: I'm just looking at Jeffery's points too.

Marcos: I can try to address all this tomorrow and get something out

Torgo: I think you should work on combining the comments, and if you don't feel like you need to ask Jeffery anything, feel free to post and close the issue. The basic stuff you've written, we're happy with.

Marcos: Sounds good

Comment by @marcoscaceres Jun 20, 2025 (See Github)

Dear Payments Working Group,

Thank you for sharing the draft charter with the TAG for review. Apologies for the delay.

On Scope and Digital Wallets, Identity, and Payments

The current scope—“Digital wallets, identity, and payments”—seems quite broad, particularly with respect to identity. While digital wallets can support identity-related use cases, these are often distinct from core payments functionality. TAG recommends that the Payments Working Group scope its work more narrowly around payments and, where appropriate, collaborate with other relevant groups—such as the Federated Identity Working Group and the Verifiable Credentials Working Group—on cross-cutting identity-related topics. The charter should explicitly identify such collaboration points, particularly around areas like “user identification” and “digital credentials,” to reduce duplication and avoid overreach into domains where other groups have deeper expertise.

A related observation appears in the Motivation and Background section, which notes a goal to use digital wallets to “address both identity and payments use cases.” While this is a valid long-term aim, the TAG believes it’s important to acknowledge that identity verification and payment processing are often separate concerns, both in architecture and in practice. Many payment scenarios do not require identity verification, and when both are needed, they can often be handled independently. This distinction should inform the group’s priorities and areas of collaboration.
(Minor note: “phenomena” may not be the best term in this context.)

On Wallet APIs and Adoption

The Wallets section notes that a diverse ecosystem of payment apps has not emerged, despite several API introductions. While developments like the EUDI Wallet initiative have reinvigorated interest, the charter doesn’t clarify whether this lack of adoption stems from architectural deficiencies or external factors.

We recommend clarifying whether the WG intends to explore the causes behind this limited adoption. Is the group planning to investigate and document shortcomings of existing APIs (e.g., Payment Request), and is there a chartered work item or deliverable that reflects that? A clearer articulation of the problem space and the WG’s intended activities would help align future work with observed developer and market needs.

On Strong Authentication and Digital Wallets

The charter raises important questions about the relationship between potential new digital wallet APIs and existing standards such as Payment Request, Web Authentication, and Secure Payment Confirmation (SPC). Specifically: will new APIs subsume or complement these technologies?

These are timely and worthwhile questions, but the charter does not clarify whether the WG intends to answer them directly. TAG suggests that such questions might be more appropriately explored initially through incubation or in coordination with other groups. If the intention is for the Payments WG to support or participate in such exploration, the charter should state this more clearly. Otherwise, there is a risk of misaligned efforts or premature standardization without broad architectural alignment.

On Supporting a Diversity of Payment Systems

The charter aims to improve support for payment systems beyond those prevalent in North America and Europe, including those that involve minimal merchant integration or operate without requiring JavaScript. This is a worthy goal.

However, TAG recommends caution in suggesting that "no JavaScript" is inherently preferable. While minimizing dependencies can be beneficial in certain contexts, such approaches involve trade-offs (e.g., reduced developer flexibility). Rather than focusing on specific technical properties like JavaScript presence, the charter might better frame the goal as enhancing the inclusiveness and adaptability of the Web platform for a broader range of global payment flows.

Summary

The TAG supports the aims of the Payments Working Group and appreciates the clarity of the charter. However, we recommend:

  • Clarifying the scope and emphasizing collaboration with identity-focused groups (e.g., FedID, VC WG) where use cases overlap;
  • Explicitly stating whether and how the WG intends to investigate gaps in adoption of existing APIs;
  • Clarifying whether the WG intends to explore the technical relationships among wallet APIs, Payment Request, SPC, and WebAuthn—and through what mechanisms (e.g., incubation, coordination);
  • Reframing the “diverse payment systems” discussion to focus on inclusivity and adaptability rather than technology-specific traits.

We thank the Working Group for the opportunity to review and look forward to continued architectural coordination.

Best regards,
– The W3C Technical Architecture Group (TAG)