DONOBLOCK_EN
  • 🔵Litepaper
  • 🟢Whitepaper
  • 2. Introduction
  • 3.Background and Strategy
    • 3-1 World Giving Index
    • 3-2 plan to expand the base of donations
  • 4. DonaBlock Vision
  • 5. DonaBlock Giving Protocol
    • 5-1 DonaBlock.1 Brand mall Connect - DonaBlock Brand Mall
    • 5-2 DonaBlock.2 Bazaar Connect - DonaBlock Bazaar
    • 5-3 DonaBlock.3 - DonaBlock Store
    • 5-4 DonaBlock Ecosystem Participants & Contributors
  • 6. DonaBlock.1 Brand Mall Connect
    • 6-1 Dona Brand ShopBack
    • 6-2 Dona Brand ShopGive
    • 6-3 DonaBlock Browser Extension
    • 6-4 DonaBlock Mobile App
    • 6-5 Service Flow
    • 6-6 Donate Crypto
    • 6-7 Sustainable Development Goals -Impact Index Funds map to the United Nations’ Sustainable Develop
  • 7. DonaBlock.2 Bazaar Connect
    • 7-1 Dona Bazaar ShopBack
    • 7-2 Dona Bazaar ShopGive
    • 7-3 Active consumer participation- volunteer
    • 7-4. BLOCK.2- Architecture
  • 8. DonaBlock.3 Offline Store Connect
    • 8-1 PAYMENT CARD SECURITY Oauth 2.0 Protocol Flow
  • 9. DonaBlock Donation Ecosystem
    • 9-1. How to Donate Crypto to Support Charities
    • 9-2 DonaBlock Giving Fund - Index Fund
    • 9-3. DonaBlock Giving Fund -Impact Fund
    • 9-4 Cryptocurrency Donation Flow
    • 9-5 DonaBlock NFT Fundraising
  • 10. Crypto Fundraising Solution
    • 10-1 DonaBlock Crypto Wallet
    • 10-2 Services for volunteer- Create a Fundraiser
  • 11. DonaBlock Dashboard System
  • 12. DonaBlock Fame Evaluation System
    • 12-1. Volunteer Evaluation System
    • 12-2 Method and the variables that determine
  • 13. DonaBlock Service Flow
  • 14. DonaBlock Technology
    • 14-1 System Architecture
    • 14-2 Core Layer
    • 14-3 Commerce Layer
    • 14-4 Application Layer
    • 14-5 Structure of API and Other Infrastructures
    • 14-6 Quantum cryptography & SECURITY
  • 15. DonaBlock Data Architecture
    • 15-1 Core Data : On-Blockchain Data
    • 15-2 Reference Data :
    • 15-3 Data Ownership : Public / Private
    • 15-4 Configuration and Technical Specifications
  • 16. DonaBlock Token Economy
    • 16-1. Token Flow
    • 16-2. DonaBlock Token and DonaGive Token
    • 16-3 Block-Fame
    • 16-4 Volunteers Charity Campaign Reward
    • 16-5 Consumer Rewards
  • 17. Token Economy Strategy & Risk Management
  • 18. DonaBlock Roadmap
  • 19. Token Allocation
  • 20. Partner with The DonaBlock
  • 21. Audit
Powered by GitBook
On this page
  1. 8. DonaBlock.3 Offline Store Connect

8-1 PAYMENT CARD SECURITY Oauth 2.0 Protocol Flow

ECOSYSTEM OF PAYMENT DEVICES, APPLICATIONS, INFRASTRUCTURE AND USERS

1. In order to receive “ShopBack” at an offline partner store, the credit card or debit card used must be registered on the DonaBlock mobile APP. Many people are unaware that similar card-linking apps can see their consumption habits and personal information. DonaBlock does not collect or sell consumer personal information, and the information collected during card use is protected securely. We only use the information necessary to convert the “ShopBack” received from the seller to DonaBlock Tokens when consumers shop at partner stores. For the most reliable security, we will use OAuth connection for credit card linking to build an encrypted “ShopBack” service.

2. The DonaBlock card-linking system uses the most advanced technology to comply with the PCI DSS standard and maintain strict access control to prevent accidents. We collect and process only the data necessary to calculate and authenticate partner store and transaction categories and related account types for “ShopBack” provision. We identify but do not store consumer creditworthiness. We comply with the PCI DSS standard and handle sensitive information with the highest level of security.

3. A) (APP User) This requests permission to access user data. Conceptually, the app requests this from the user, but in practice, it is often a third-party authority that mediates between the app and the user to provide the necessary permissions.

(B) (User APP) We issue an authorization grant that proves consent to access. RFC 6749 defines four types of authorization grants. The type of authorization grant to be used is determined by the type of app and the support of the granting authority.

(C) (APP Authority Granting Agency) We submit an authorization grant to request an access token. The access token is the key that unlocks the locked safe of user data.

(D) (Authority Granting Agency APP) We verify the authorization grant and provide an access token that contains information about the data items, scope, and period that the user has agreed to. In other words, we provide the key to access the user’s data when needed.

(E) (APP Data Providing Agency) We submit an access token to request user data.

(F) (Data Providing Agency APP) We provide user data. We verify that the access token submitted by the app is valid and confirm the information in the access token to determine the data items, scope, and validity period to be provided.

Previous8. DonaBlock.3 Offline Store ConnectNext9. DonaBlock Donation Ecosystem

Last updated 1 year ago