[W3C Web Crypto WG] - agenda for 21st of May 2012 from GALINDO Virginie on 2012-05-21 (public-webcrypto@w3.org from May 2012)

From: GALINDO Virginie <Virginie.GALINDO@gemalto.com>
Date: Mon, 21 May 2012 16:12:47 +0200
To: "public-webcrypto@w3.org" <public-webcrypto@w3.org>
Message-ID: <1126F161F6F1B24FABD92B850CAFBD6E011533822B14@CROEXCFWP04.gemalto.com>
Dear all,

You will find below the proposed agenda for our call today, starting at 17:00 UTC. 
It should last 1h30 maximum. 

Regards,

Virginie GALINDO
Gemalto
Chair of Web Cryptography WG

----- agenda 21 May 2012 ------

1- Welcome 
- attendees list
- news from new members
-  minutes from previous call  http://www.w3.org/2012/05/14-crypto-minutes.html 

2- Primary usecases
- presenting David D survey
- call to contributions

3- draft API technical discussion (editors)

A) algorithm to be supported by the API
See proposal http://lists.w3.org/Archives/Public/public-webcrypto/2012May/0066.html and comments http://lists.w3.org/Archives/Public/public-webcrypto/2012May/0090.html 

B) discovery mechanism 
See proposal and comments http://lists.w3.org/Archives/Public/public-webcrypto/2012May/0074.html 
==> PROPOSED RESOLUTION : the API will implement means to audit the environment and gets (a) the list of all supported algorithm and (b) the support of a specific set of algorithm

C) random generation
Clarifying the interaction with http://wiki.whatwg.org/wiki/Crypto 
Existing implementations : Gecko, Opera, 
Discussing about the support (and indication) of "cryptographically secure PRNG"

D) key isolation and key 
Discussing about the need for key isolation (is the key available to the JS, yes or no ?)
Discussing about the key timelife - See strawman proposal sent by Ryan Sleevi - Google http://lists.w3.org/Archives/Public/public-webcrypto/2012May/0052.html 

4- Group Life
- our regular call
==> PROPOSED RESOLUTION : the regular call will be held every Mondays @ 19:00 UTC. 
- our F2F
==> PROPOSED RESOLUTION : Next F2F will be on the week 23 to 27th of July in Vancouver, host to be found. 
- maintenance of our documentation
Primary features editorship
Draft API maintenance/renewal
Secundary feature editorship

5- AOB

-------------




-----Original Message-----
From: GALINDO Virginie [mailto:Virginie.GALINDO@gemalto.com] 
Sent: Tuesday, May 15, 2012 4:39 PM
To: public-webcrypto@w3.org
Subject: [Web Crypto WG] - our next conf call focus

Dear all,

A short summary of what we may have to address during our next call : 

* We have a big issue to solve about the level of our API. Will it be low level, medium level or high level ? And this might be solved by writing down the usecases and functional requirements as David, Richard and Mitch kindly volunteered to do. So we will spend time reviewing the draft produced (no pressure, guys ;-). 

* We also had some discussions last week on the mailing list, that I have briefly listed in the provisional agenda (extract re-copied and paste below for your convenience), which are not directly linked to this problem of API level - unless I missed something. For those one, I would like to open emails discussions (with separate mail thread) so that we progress and potentially make decision. For each of them, I'll try to summarize the situation and will expect you to react if you want to reshape the proposal. In case we do not come to conclusion (which I am expecting :-), we will discuss this in our next call and start using the issue tracker to keep track of our open points. 

Feel free also in the meantime to raise on the mailing list any new concern you may have with the current editor's draft http://www.w3.org/2012/webcrypto/WebCryptoAPI/. 

Regards,
Virginie
Gemalto

--------------------------
A) level of the API (low level, medium level or high level) See discussion raised with Ryan Sleevi from Google and David Dahl from Mozilla http://lists.w3.org/Archives/Public/public-webcrypto/2012May/0039.html 
 
B) algorithms to be supported by the API See information sent by Mike Johns - Microsoft http://lists.w3.org/Archives/Public/public-webcrypto/2012May/0034.html
See question on TLS raised by Eric Rescorla http://lists.w3.org/Archives/Public/public-webcrypto/2012May/0041.html  

C) algorithm discovery mechanism 

D) handling the keys (management by identifiers)

E) types of key lifetime depending on usecases See strawman proposal sent by Ryan Sleevi - Google http://lists.w3.org/Archives/Public/public-webcrypto/2012May/0052.html
--------------------------




-----Original Message-----
From: Harry Halpin [mailto:hhalpin@w3.org] 
Sent: Monday, May 14, 2012 11:39 PM
To: public-webcrypto@w3.org
Subject: Draft Minutes from Web Crypto May 14th 2012 meeting

Attached:

http://www.w3.org/2012/05/14-crypto-minutes.html

If you see any errors, do tell me - this meeting was a bit more tricky than usual due to Zakim being not functional.

    cheers,
       harry
Received on Monday, 21 May 2012 14:13:37 UTC