W3C

XML Security Working Group Teleconference

04 Oct 2011

Agenda

See also: IRC log

Attendees

Present
Frederick_Hirsch, Hal_Lockhart, Pratik_Datta
Regrets
Scott_Cantor, Brian_LaMacchia, Magnus_Nystrom
Chair
Frederick_Hirsch
Scribe
fjh

Contents

<trackbot> Date: 04 October 2011

Administrative

<scribe> ScribeNick: fjh

PAG status, http://www.w3.org/2011/xmlsec-pag/questions.html

RESOLUTION: Cancel teleconference on 6 December and 27 December

<scribe> ACTION: fjh to update explanation of changes for XML Signature 1.1 [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action01]

<trackbot> Created ACTION-838 - Update explanation of changes for XML Signature 1.1 [on Frederick Hirsch - due 2011-10-11].

<scribe> ACTION: fjh to update explanation of changes for XML Encryption 1.1 [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action02]

<trackbot> Created ACTION-839 - Update explanation of changes for XML Encryption 1.1 [on Frederick Hirsch - due 2011-10-11].

Minutes Approval

Approve minutes, 27 September 2011

http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/att-0057/minutes-2011-09-27.html

RESOLUTION: Minutes from 27 September 2011 are approved

Editorial and status updates

Updated XSD and RELAX NG schema files with updated copyright, http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0065.html (Frederick)

Updated IETF RFC references, http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0066.html (Frederick)

RetrievalMethod change reviewed, ACTION-834, http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0064.html (Thomas)

XML Signature 2.0

LC-2488 updates

http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0046.html (Pratik)

Additional editorial feedback on proposal - http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0051.html (Paul Grosso)

fjh: change from Pratik looks good to me

<scribe> ACTION: pdatta to update XML Signature 1.1 and 2.0 with change in http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0006.html [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action03]

<trackbot> Created ACTION-840 - Update XML Signature 1.1 and 2.0 with change in http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0006.html [on Pratik Datta - due 2011-10-11].

<scribe> ACTION: pdatta to add link to canonical XML 2.0 samples into the spec [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action04]

<trackbot> Created ACTION-841 - Add link to canonical XML 2.0 samples into the spec [on Pratik Datta - due 2011-10-11].

XML Encryption 1.1: ConcatKDF

http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0049.html

magnus email -> http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0005.html

RESOLUTION: adopt XML Encryption 1.1 section 5.4.1 change proposed by Magnus

pdatta: question remains for ephemeral case

<pdatta> http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0063.html

pdatta: note that I already made it clear that question is about ephemeral-static

fjh: suggest you resend that message to the NIST contact Hal provided as well as our public list

XML Encryption 1.1: OAEP and SHA-1

fjh: status summarized in my email - http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0001.html
... I originally suggested we remove XML and use the OAEPParams only but Scott noted that won't be compatibible given existing implementations
... Magnus suggested we not add XML for MGF, http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0004.html
... proposal is to rely on OAEPParams for MGF definition, but XML for hash value
... change is to update wording so that it is clear what MGF default is, but not to only require that value , allowing update in OAEPParams

<scribe> ACTION: fjh to propose updated spec language to address OAEP and SHA-1 issue [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action05]

<trackbot> Created ACTION-842 - Propose updated spec language to address OAEP and SHA-1 issue [on Frederick Hirsch - due 2011-10-11].

Interop and testing

W3C Testing FAQ, http://www.w3.org/QA/WG/2005/01/test-faq

Test Cases for C14N 1.1 and XMLDSig Interoperability, http://www.w3.org/TR/2008/NOTE-xmldsig2ed-tests-20080610/

1.0 interop http://www.w3.org/Signature/2001/04/05-xmldsig-interop.html

ACTION-779, ACTION-793

http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0056.html (Gerald)

pdatta: making table for key agreement choices, table for keywrap choices, symmetric key choices

fjh: latest from Gerald separates out 1.0 from 1.1 and 2.0 which should be helpful, http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0056.htm

pdatta: will share the table I am creating and then we can consider how to merge with what Gerald has produced

fjh: that sounds good

<scribe> ACTION: fjh to follow up on possible additional interop participants [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action06]

<trackbot> Created ACTION-843 - Follow up on possible additional interop participants [on Frederick Hirsch - due 2011-10-11].

Adjourn

Summary of Action Items

[NEW] ACTION: fjh to follow up on possible additional interop participants [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action06]
[NEW] ACTION: fjh to propose updated spec language to address OAEP and SHA-1 issue [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action05]
[NEW] ACTION: fjh to update explanation of changes for XML Encryption 1.1 [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action02]
[NEW] ACTION: fjh to update explanation of changes for XML Signature 1.1 [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action01]
[NEW] ACTION: pdatta to add link to canonical XML 2.0 samples into the spec [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action04]
[NEW] ACTION: pdatta to update XML Signature 1.1 and 2.0 with change in http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0006.html [recorded in http://www.w3.org/2011/10/04-xmlsec-minutes.html#action03]
 
[End of minutes]
Minutes formatted by David Booth's scribe.perl version 1.135 (CVS log)
$Date: 2009-03-02 03:52:20 $