Agenda - Distributed Meeting 2011-01-04 (v2)

Agenda: W3C XML Security WG Distributed Meeting #91,  4 January 2011  Distributed Meeting, v2

Logistics details and links to information at the bottom of this email.

v2, removed interfering graphic, update re actions from Scott and Pratik 

1) Administrivia: Scribe confirmation, Agenda review, Meeting  Planning, Liaisons, Announcements

1a)  May publishing moratorium

6 May: Deadline for publication requests before moratorium [12pm ET]

http://lists.w3.org/Archives/Member/member-xmlsec/2011Jan/0000.html (Frederick)

2) Minutes Approval

Approve minutes, 21 December 2010

http://lists.w3.org/Archives/Public/public-xmlsec/2010Dec/0078.html

Proposed RESOLUTION: Minutes from 21 December are approved.

3)   XML Signature 1.1 and XML Encryption 1.1 Last Call

Last call ended 22 December. No comments received.

4) Next steps before bringing 1.1 to CR

4a) Requirements met?

4b) Review and updates to change explanation documents

4c) Additional external review needed? IETF?

4d) Open Issues

ISSUE-91		ECC can't be REQUIRED	2009-01-26	

ISSUE-178		Highlight additional text constraints on XSD schema as such. 2010-01-18	XML Encryption 1.1

ISSUE-216		Whether and how to test denial of service cases in test suite

5) XML Security  2.0

5a) Signature 2.0 Editorial updates

Updated to move compatibility  mode to new section, remove "2.0 Mode" phrases, add tool generated section referencing, add conformance section

http://lists.w3.org/Archives/Public/public-xmlsec/2010Dec/0081.html (Frederick)

http://lists.w3.org/Archives/Public/public-xmlsec/2010Dec/0082.html (Frederick)

Please review http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-20/

5b) ACTION-750, ACTION-751

http://lists.w3.org/Archives/Public/public-xmlsec/2011Jan/0002.html (Scott Cantor)

5c) C14N 2.0 changes and issues

http://lists.w3.org/Archives/Public/public-xmlsec/2011Jan/0003.html (Pratik)

5d) 2.0 Requirements Editorial Update

Updated 2.0 Requirements, http://lists.w3.org/Archives/Public/public-xmlsec/2010Dec/0080.html (Frederick)

Converted to use ReSpec, moved section "Enable higher performance and streamability" up  level as it is an important topic in its own right, Added subsection "Streaming XPath Profile for XML Signature 2.0" per ACTION-754

Please review this document including the new section at  http://www.w3.org/2008/xmlsec/Drafts/xmlsec-reqs2/Overview.html#xpath-profile

5e) Status of 2.0 related actions

ACTION-476        Review xml signature 2.0	Frederick Hirsch	2010-08-18	XML Signature 2.0

ACTION-538		Provide proposal related to namespace wrapping attacks once XPath profile available	Meiko Jensen

ACTION-619		Review Meiko proposal for ACTION-538	Ed Simon	

ACTION-717		Document the Performance improvements with 2.0	Pratik Datta	

ACTION-729		Highlight potential issue with non-support for xml:base through removal of inclusive in xml signature and c14n2 drafts	Pratik Datta

ACTION-732		Add example to signature 2.0 once Meiko shares text on list, see ACTION-711	Frederick Hirsch	

ACTION-747		Update XPath profile for Option 1 in proposal associated with ACTION-737	Pratik Datta
	
ACTION-748		Update XML Signature 2.0 for Option 1 as proposed for ACTION-737	Scott Cantor
	
ACTION-753		Work on creating 2.0 example for Signature 2.0	Scott Cantor

5f) Status of 2.0 related issues

http://lists.w3.org/Archives/Public/public-xmlsec/2011Jan/0000.html (Frederick)

6)   Close Pending actions

These will be closed after the meeting unless concern raised before  or  during meeting. Please review in advance of meeting.

ACTION-680		Add proposal to document, with clarification regarding double quotes and still allowing approach #3, http://lists.w3.org/Archives/Public/public-xmlsec/2010Oct/0016.html	Pratik Datta

ACTION-692		Add editorial note to c142 indicated only exclusive	Pratik Datta
	
ACTION-712		XPathAware child element of QNameAware to C14n2	Pratik Datta
	
ACTION-714		Add warning in c14n 2.0 about not parsers not allowing to redefine xml* prefixes	Pratik Datta
	
ACTION-715		Add content on scanning algorithm (augment to remove duplicates), and information on where to emit the namespace declaration	Pratik Datta

ACTION-728		Send summary of differences of xslt and xml security streamability and XPath profiling to list	Pratik Datta	

ACTION-746		Implement 2.0 mode name change	Frederick Hirsch

ACTION-749		Create conformance section and move 6.1 material to it	Frederick Hirsch

ACTION-750		Implement change to schema and document for Verification element proposal as noted in message 47 for ACTION-741	Scott Cantor	2010-12-21	XML Signature 2.0

ACTION-751		Implement change for ACTION-742	Scott Cantor
	
ACTION-752		Implement change to move compatibility material to new section	Frederick Hirsch

ACTION-754		Add new section in 2.0 requirements regarding rational for new XPath profile based on Pratik's proposal

====

7) Other Business

8) Adjourn

Scribing  list
----------------
Pratik Datta, Oracle (27 July 2010, 20 October 2009)
Hal Lockhart, Oracle (17 August 2010, 2 February 2010, 27 October 2009)
Thomas Roessler (31 August 2010, 4 May, 2010, 20 April 2010)
Magnus Nystrˆm, Microsoft (7 Sept 2010, 27 April, 2010, 2 June, 2009)
Chris Solc, Adobe (14 Sept 2010, 26 January 2010, 8 December 2009)
Shivaram Mysore, Invited Expert (28 Sept 2010, 7 Sept 2010, 6 November 2009 F2F, 23 June 2009)
Brian LaMacchia, Microsoft (19 October 2010, 25 May 2010, 6 November 2009 F2F)
Scott Cantor, invited expert (19 October 2010, 31 August 2010, 1 June 2010, 24 Nov 2009)
Meiko Jensen (2 November 2010 F2F,  21 Sept 2010, 11 May, 2010)
Bruce Rich, IBM (1 & 2 November 2010 F2F, 30 March 2010)
Cynthia Martin, MITRE (30 November 2010, 26 October 2010, 6 July 2010, 2 March 2010)
Ed Simon, Invited Expert (7 December 2010, 15 June 2010, 25 January 2010)
Gerald Edgar, Boeing (14 December 2010, 16 November 2010, 10 August 2010, 22 June 2010, 13 April 2010)

Not seen recently:
Bradley Hill, Invited Expert (14 July 2009)
John Wray, IBM (15 Dec 2009, 1 Sept 2009)
Sean Mullan, Oracle (12 January 2010, 6 October 2009)
Aldrin d'Souza, EMC (9 Feb 2010)
Karel Wouters IBBT, (9 March 2010)

Logistics Info:

10-12:00 am Eastern Time
Information on meeting times in various time zones:
http://www.w3.org/2008/xmlsec/Group/Overview.html#phone

Zakim Bridge:
+1.617.761.6200 conference code 965732# ('XMLSEC')

IRC Chat: irc.w3.org (port 6665), #xmlsec

Web-based IRC (member-only): <http://irc.w3.org/?channels=xmlsec>

Please note that attendance of XMLSEC WG teleconferences is  restricted  to registered WG participants and persons invited by the chair.

Scribe Instructions: <http://www.w3.org/2007/xmlsec/Group/Scribe-Instructions.html

Liaison information: <http://www.w3.org/2008/xmlsec/Group/Overview.html#coordination

Publication Status available at <http://www.w3.org/2008/xmlsec/wiki/PublicationStatus

Roadmap at <http://www.w3.org/2008/xmlsec/wiki/Roadmap>
---
regards, Frederick

Frederick Hirsch, Nokia
Chair XML Security WG

Received on Tuesday, 4 January 2011 14:16:28 UTC