See also: IRC log
<trackbot> Date: 24 January 2012
<scribe> ScribeNick: fjh
<Ed_Simon> * Ed is IRC-only
Approve minutes, 17 January 2012
RESOLUTION: Minutes from 17 January 2012 are approved.
(i) CR of XML Signature 2.0, Canonical XML 2.0, XML Signature Streaming Profile of XPath 1.0s
(ii) Note of "XML Security RELAX NG Schemas"
proposed RESOLUTION: WG confirms publication of XML Security RELAX NG Schemas as a W3C Note
RESOLUTION: WG confirms publication of XML Security RELAX NG Schemas as a W3C Note
scantor: this RFC seems to offer alternative approach to GCM and whether we might use this to address concerns
hal: defeats published attacks using currently implemented algorithms, even though less efficient than GCM
scantor: may be used for JSON, good to have consistency
<scribe> ACTION: fjh to raise RFC 6476 with magnus [recorded in http://www.w3.org/2012/01/24-xmlsec-minutes.html#action01]
<trackbot> Created ACTION-868 - Raise RFC 6476 with magnus [on Frederick Hirsch - due 2012-01-31].
hal: rfc defines key derivation
scantor: also defines data structure to include HMAC
... might be an improvement to have this as part of encryption layer rather than at application layer
hal: see jose list on ietf, redo of xml signature and encryption for json
<Hal> JOSE Archive http://www.ietf.org/mail-archive/web/jose/current/maillist.html
scantor: expects implementation on top of OpenSSL possible, unlike doing GCM from scratch
pdatta: not having GCM combined signing and encryption reduces possibility of timing attack, which might occur with HMAC + encryption approach
hal: done block at a time
<scribe> ACTION: fjh to contact Brian/Magnus re 1.1 interop [recorded in http://www.w3.org/2012/01/24-xmlsec-minutes.html#action02]
<trackbot> Created ACTION-869 - Contact Brian/Magnus re 1.1 interop [on Frederick Hirsch - due 2012-01-31].
pdatta: will send message to Magnus about continuing 1.1 interop
fjh: ongoing discussion, possible meeting next week
<trackbot> ACTION-862 -- Hal Lockhart to review FIPS and RSA-OAEP question in http://lists.w3.org/Archives/Public/public-xmlsec/2011Dec/0001.html -- due 2011-12-20 -- OPEN
will follow up on previous information requests
<trackbot> ACTION-866 -- Scott Cantor to review XML Encryption 1.1 for schema and text description consistency and clarity -- due 2012-01-24 -- OPEN