# XML Security Working Group Teleconference

## 11 Oct 2011

[Agenda][3]

See also: [IRC log][4]

## Attendees

Present

    Frederick_Hirsch, Ed_Simon, Scott_Cantor, Pratik_Datta, Hal_Lockhart

Regrets

    Bruce_Rich, Thomas_Roessler

Chair

    Frederick_Hirsch

Scribe

    fjh

## Contents

  * [Topics][5]

    1. [Administrative][6]

    2. [Minutes Approval][7]

    3. [XML Encryption 1.1 update][8]

    4. [XML Encryption 1.1 Test Cases][9]

    5. [XML Encryption 1.1 PBKDF2 and KeyLength parameter][10]

    6. [XML Encryption 1.1 and ConcatKDF Salt/Nonce][11]

    7. [XML Encryption algorithms][12]

    8. [XML Signature 2.0][13]

    9. [Adjourn][14]

  * [Summary of Action Items][15]

* * *

<trackbot> Date: 11 October 2011

<scribe> ScribeNick: fjh

### Administrative

No announcements

### Minutes Approval

Approve minutes, 4 October 2011

[http://lists.w3.org/Archives/Public/public-
xmlsec/2011Oct/att-0007/minutes-2011-10-04.html][16]

**RESOLUTION: Minutes from 4 October 2011 are approved.**

### XML Encryption 1.1 update

[http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0024.html][17]
(Frederick)

[http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0029.html][18]
(Scott)

proposed RESOLUTION: Accept XML Encryption 1.1 change proposed by Frederick in
2011Oct/0024 with change to make MGF xenc11 element

**RESOLUTION: Accept XML Encryption 1.1 change proposed by Frederick in
2011Oct/0024 with change to make MGF xenc11 element**

<scribe> **ACTION:** fjh to update XML Encryption 1.1 with changes in
[http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0024.html][17]
[recorded in [http://www.w3.org/2011/10/11-xmlsec-minutes.html#action01][19]]

<trackbot> Created ACTION-844 - Update XML Encryption 1.1 with changes in
[http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0024.html][17] [on
Frederick Hirsch - due 2011-10-18].

<scribe> **ACTION:** fjh to propose URI for sha 2 for mgf function [recorded
in [http://www.w3.org/2011/10/11-xmlsec-minutes.html#action02][20]]

<trackbot> Created ACTION-845 - Propose URI for sha 2 for mgf function [on
Frederick Hirsch - due 2011-10-18].

<scribe> **ACTION:** fjh to update algorithm cross-reference to reflect
changes for xml encryption 1.1 [recorded in [http://www.w3.org/2011/10/11
-xmlsec-minutes.html#action03][21]]

<trackbot> Created ACTION-846 - Update algorithm cross-reference to reflect
changes for xml encryption 1.1 [on Frederick Hirsch - due 2011-10-18].

### XML Encryption 1.1 Test Cases

[http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0018.html][22]

pdatta: have started two tables, one for key transport for various
combinations

... one for key agreement

... only have one combination in each table but would like to expand this to
various combinations

fjh: request that other implementers review this and contribute, please
contact Pratik

### XML Encryption 1.1 PBKDF2 and KeyLength parameter

[http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0017.html][23]

fjh: Waiting for response from Magnus or others

proposal is to remove KeyLength

### XML Encryption 1.1 and ConcatKDF Salt/Nonce

[http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0022.html][24]

pdatta: sent an email to NIST as well, asking about this, but have received no
response

... question was not about re-using the key, know should not re-use it

scantor: understood magnus to say could not re-use key with same recipient,
but for different recipients get different derived key due to different public
key

... question if using ephemeral key with different recipients, is there a
weakness, even though different derived keys

... sounds like from Magnus response that there isn't

... document should be clear that can only use same key for different
recipients, not same

pdatta: this is something to look at

scantor: probably need a warning in the text that not to re-use the key

pdatta: safer to use a nonce each time, then do not need to worry about
warning

### XML Encryption algorithms

Discussion of 2.0 and CBC mode, question of versioning

fjh: should not make dramatic changes to 1.1 due to deployment, should we
consider changes for 2.0

hal: might need to wait for a few years to let attacks settle

... interop is important

... authenticating mode for block mode is an interesting direction, not sure
of weaknesses with those however

pdatta: could make recommendation in 2.0 in this direction

<scribe> **ACTION:** pdatta to propose update to 2.0 algorithm requirements to
encourage authenticating mode [recorded in [http://www.w3.org/2011/10/11
-xmlsec-minutes.html#action04][25]]

<trackbot> Created ACTION-847 - Propose update to 2.0 algorithm requirements
to encourage authenticating mode [on Pratik Datta - due 2011-10-18].

### XML Signature 2.0

[http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0046.html][26]
(Pratik)

Additional editorial feedback on proposal -
[http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0051.html][27]
(Paul Grosso)

pdatta: edit remaining to be done

fjh: mentioned on XML Coordination call that it was done...

### Adjourn

## Summary of Action Items

**[NEW]** **ACTION:** fjh to propose URI for sha 2 for mgf function [recorded
in [http://www.w3.org/2011/10/11-xmlsec-minutes.html#action02][20]]

**[NEW]** **ACTION:** fjh to update algorithm cross-reference to reflect
changes for xml encryption 1.1 [recorded in [http://www.w3.org/2011/10/11
-xmlsec-minutes.html#action03][21]]

**[NEW]** **ACTION:** fjh to update XML Encryption 1.1 with changes in
[http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0024.html][17]
[recorded in [http://www.w3.org/2011/10/11-xmlsec-minutes.html#action01][19]]

**[NEW]** **ACTION:** pdatta to propose update to 2.0 algorithm requirements
to encourage authenticating mode [recorded in [http://www.w3.org/2011/10/11
-xmlsec-minutes.html#action04][25]]


[End of minutes]

* * *

Minutes formatted by David Booth's [scribe.perl][28] version 1.135 ([CVS
log][29])

$Date: 2009-03-02 03:52:20 $

   [1]: http://www.w3.org/Icons/w3c_home

   [2]: http://www.w3.org/

   [3]: http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0031.html

   [4]: http://www.w3.org/2011/10/11-xmlsec-irc

   [5]: #agenda

   [6]: #item01

   [7]: #item02

   [8]: #item03

   [9]: #item04

   [10]: #item05

   [11]: #item06

   [12]: #item07

   [13]: #item08

   [14]: #item09

   [15]: #ActionSummary

   [16]: http://lists.w3.org/Archives/Public/public-
xmlsec/2011Oct/att-0007/minutes-2011-10-04.html

   [17]: http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0024.html

   [18]: http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0029.html

   [19]: http://www.w3.org/2011/10/11-xmlsec-minutes.html#action01

   [20]: http://www.w3.org/2011/10/11-xmlsec-minutes.html#action02

   [21]: http://www.w3.org/2011/10/11-xmlsec-minutes.html#action03

   [22]: http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0018.html

   [23]: http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0017.html

   [24]: http://lists.w3.org/Archives/Public/public-xmlsec/2011Oct/0022.html

   [25]: http://www.w3.org/2011/10/11-xmlsec-minutes.html#action04

   [26]: http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0046.html

   [27]: http://lists.w3.org/Archives/Public/public-xmlsec/2011Sep/0051.html

   [28]: http://dev.w3.org/cvsweb/~checkout~/2002/scribe/scribedoc.htm

   [29]: http://dev.w3.org/cvsweb/2002/scribe/