# XML Security Working Group Teleconference

## 06 Mar 2012

[Agenda][3]

See also: [IRC log][4]

## Attendees

Present

    Frederick_Hirsch, Gerald_Edgar, Ed_Simon, Bruce_Rich

Regrets


Chair

    Frederick_Hirsch

Scribe

    fjh

## Contents

  * [Topics][5]

    1. [Administrative][6]

    2. [Minutes Approval][7]

    3. [KT-I algorithm for XML Signature][8]

    4. [XML Encryption 1.1 editorial update (ACTION-867)][9]

    5. [New draft functional explanation documents for XML Signature 1.1 and
XML Encryption 1.1][10]

    6. [XML Signature 1.1 and XML Encryption 1.1 interop][11]

    7. [XML Signature 2.0][12]

    8. [Action review][13]

    9. [Any other business][14]

    10. [Adjourn][15]

  * [Summary of Action Items][16]

* * *

<trackbot> Date: 06 March 2012

<scribe> ScribeNick: fjh

### Administrative

PAG is making progress toward resolution

### Minutes Approval

Approve minutes, 28 February 2012

[http://lists.w3.org/Archives/Public/public-
xmlsec/2012Feb/att-0021/minutes-2012-02-28.html][17]

**RESOLUTION: Minutes from 28 February 2012 are approved.**

### KT-I algorithm for XML Signature

[http://tools.ietf.org/html/rfc6090#section-7.2][18]

### XML Encryption 1.1 editorial update (ACTION-867)

ACTION-867?

<trackbot> ACTION-867 -- Frederick Hirsch to review XML Encryption 1.1 for
schema and text description consistency and clarity -- due 2012-01-24 --
PENDINGREVIEW

<trackbot> [http://www.w3.org/2008/xmlsec/track/actions/867][19]

[http://lists.w3.org/Archives/Public/public-xmlsec/2012Mar/0000.html][20]

I notice in section 3.5.3 for "The ds:RetrievalMethod Element" there is the
following not very clear or useful schema definition

**RESOLUTION: make changes to XML Encryption 1.1 CR draft associated with
email [http://lists.w3.org/Archives/Public/public-
xmlsec/2012Mar/0000.html][20]**

<scribe> **ACTION:** fjh to update XML Encryption 1.1 (including draft for CR
publication) with changes for ACTION-867 [recorded in
[http://www.w3.org/2012/03/06-xmlsec-minutes.html#action01][21]]

<trackbot> Created ACTION-874 - Update XML Encryption 1.1 (including draft for
CR publication) with changes for ACTION-867 [on Frederick Hirsch - due
2012-03-13].

### New draft functional explanation documents for XML Signature 1.1 and XML
Encryption 1.1

fjh: I was reviewing our implementation status and planning and thinking how
to provide developers with information on what has changed that is focused

[http://lists.w3.org/Archives/Public/public-xmlsec/2012Mar/0002.html][22]

developer explain for signature 1.1 [http://www.w3.org/2008/xmlsec/Drafts
/xmldsig-core-11/developer-explain.html][23]

developer explain for encryption 1.1 [http://www.w3.org/2008/xmlsec/Drafts
/xmlenc-core-11/developer-explain.html][24]

fjh: these should help developers understand what has changed technically

... can also help as checklist for interop, and should match what Gerald has
been producing

... shall we use these going forward

brich: this looks useful and clear

gerald-e: +1

**RESOLUTION: reference these developer explain documents from the status of
XML Signature 1.1 and XML Encryption 1.1 going forward, including XML
Encryption 1.1 draft to be published as a CR**

<scribe> **ACTION:** fjh to update XML Signature 1.1 and XML Encryption 1.1 to
reference developer explain from sotd, including draft being prepared for CR
publication [recorded in [http://www.w3.org/2012/03/06-xmlsec-
minutes.html#action02][25]]

<trackbot> Created ACTION-875 - Update XML Signature 1.1 and XML Encryption
1.1 to reference developer explain from sotd, including draft being prepared
for CR publication [on Frederick Hirsch - due 2012-03-13].

### XML Signature 1.1 and XML Encryption 1.1 interop

ACTION-872?

<trackbot> ACTION-872 -- Gerald Edgar to update interop status tables to
reflect additional tests that need to be added -- due 2012-02-28 -- OPEN

<trackbot> [http://www.w3.org/2008/xmlsec/track/actions/872][26]

ACTION-872 closed

<trackbot> ACTION-872 update interop status tables to reflect additional tests
that need to be added closed

Updated table sent by Gerald: [http://lists.w3.org/Archives/Public/public-
xmlsec/2012Mar/att-0004/test-table-1_1-2012-03-05.htm][27]

gerald-e: microsoft added 48 test vectors, have added these

... have also reviewed email to see if any other tests need to be added

... so this table should now be up to date and complete

fjh: the document has a number of sections, including tests from 1.1 needed
for 2.0 (first section), tests for 1.1 and tests for C14N 1.1.

... last table is for C14N11 which is already a rec, so we don't need those
tests to go to rec, though of course they are integrated in signature testing
implicitly for 1.1

... recommend that first table and second (streaming profile) be moved to
separate document for 2.0 testing

gerald-e: ok

fjh: we can keep c14n table in, but might need an explanatory note

... Gerald, can you add a test table on XML Encryption 1.1?

Gerald-e: possibly, but cannot promise, have to look at it

fjh: All members of WG should review the next revision

<scribe> **ACTION:** Gerald to update test cases tables and send update to
public list [recorded in [http://www.w3.org/2012/03/06-xmlsec-
minutes.html#action03][28]]

<trackbot> Created ACTION-876 - Update test cases tables and send update to
public list [on Gerald Edgar - due 2012-03-13].

<scribe> **ACTION:** fjh to review 1.1 interop test document against explain
summariy [recorded in [http://www.w3.org/2012/03/06-xmlsec-
minutes.html#action04][29]]

<trackbot> Created ACTION-877 - Review 1.1 interop test document against
explain summariy [on Frederick Hirsch - due 2012-03-13].

### XML Signature 2.0

Pratik not on call, no discussion

### Action review

ACTION-865?

<trackbot> ACTION-865 -- Frederick Hirsch to contact parties re participation
in interop for 2.0 -- due 2011-12-20 -- OPEN

<trackbot> [http://www.w3.org/2008/xmlsec/track/actions/865][30]

I have contacted some and thought about others, but not sure who else to
contact at this point, suggestions welcome

part of reason for creating new explain documents, to help developers
understand what is involved

close pending actions

ACTION-866 closed

<trackbot> ACTION-866 Review XML Encryption 1.1 for schema and text
description consistency and clarity closed

ACTION-867 closed

<trackbot> ACTION-867 Review XML Encryption 1.1 for schema and text
description consistency and clarity closed

ACTION-873 closed

<trackbot> ACTION-873 Prepare XML Encryption 1.1 and CipherReference
Processing drafts for CR publication, make transition request etc closed

### Any other business

none

### Adjourn

## Summary of Action Items

**[NEW]** **ACTION:** fjh to review 1.1 interop test document against explain
summariy [recorded in [http://www.w3.org/2012/03/06-xmlsec-
minutes.html#action04][29]]

**[NEW]** **ACTION:** fjh to update XML Encryption 1.1 (including draft for CR
publication) with changes for ACTION-867 [recorded in
[http://www.w3.org/2012/03/06-xmlsec-minutes.html#action01][21]]

**[NEW]** **ACTION:** fjh to update XML Signature 1.1 and XML Encryption 1.1
to reference developer explain from sotd, including draft being prepared for
CR publication [recorded in [http://www.w3.org/2012/03/06-xmlsec-
minutes.html#action02][25]]

**[NEW]** **ACTION:** Gerald to update test cases tables and send update to
public list [recorded in [http://www.w3.org/2012/03/06-xmlsec-
minutes.html#action03][28]]


[End of minutes]

* * *

Minutes formatted by David Booth's [scribe.perl][31] version 1.135 ([CVS
log][32])

$Date: 2009-03-02 03:52:20 $

   [1]: http://www.w3.org/Icons/w3c_home

   [2]: http://www.w3.org/

   [3]: http://lists.w3.org/Archives/Public/public-xmlsec/2012Mar/0003.html

   [4]: http://www.w3.org/2012/03/06-xmlsec-irc

   [5]: #agenda

   [6]: #item01

   [7]: #item02

   [8]: #item03

   [9]: #item04

   [10]: #item05

   [11]: #item06

   [12]: #item07

   [13]: #item08

   [14]: #item09

   [15]: #item10

   [16]: #ActionSummary

   [17]: http://lists.w3.org/Archives/Public/public-
xmlsec/2012Feb/att-0021/minutes-2012-02-28.html

   [18]: http://tools.ietf.org/html/rfc6090#section-7.2

   [19]: http://www.w3.org/2008/xmlsec/track/actions/867

   [20]: http://lists.w3.org/Archives/Public/public-xmlsec/2012Mar/0000.html

   [21]: http://www.w3.org/2012/03/06-xmlsec-minutes.html#action01

   [22]: http://lists.w3.org/Archives/Public/public-xmlsec/2012Mar/0002.html

   [23]: http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/developer-
explain.html

   [24]: http://www.w3.org/2008/xmlsec/Drafts/xmlenc-core-11/developer-
explain.html

   [25]: http://www.w3.org/2012/03/06-xmlsec-minutes.html#action02

   [26]: http://www.w3.org/2008/xmlsec/track/actions/872

   [27]: http://lists.w3.org/Archives/Public/public-xmlsec/2012Mar/att-0004
/test-table-1_1-2012-03-05.htm

   [28]: http://www.w3.org/2012/03/06-xmlsec-minutes.html#action03

   [29]: http://www.w3.org/2012/03/06-xmlsec-minutes.html#action04

   [30]: http://www.w3.org/2008/xmlsec/track/actions/865

   [31]: http://dev.w3.org/cvsweb/~checkout~/2002/scribe/scribedoc.htm

   [32]: http://dev.w3.org/cvsweb/2002/scribe/