[wot-security] minutes - 11 January 2021 from Kazuyuki Ashimura on 2021-01-19 (public-wot-wg@w3.org from January 2021)

From: Kazuyuki Ashimura <ashimura@w3.org>
Date: Tue, 19 Jan 2021 22:42:10 +0900
To: public-wot-ig@w3.org, public-wot-wg@w3.org
Message-ID: <87pn213ux9.wl-ashimura@w3.org>

availabl at:
  https://www.w3.org/2021/01/11-wot-sec-minutes.html

also as txt below.

Thanks a lot for taking the minutes, Cristiano!

Kazuyuki

---
   [1]W3C

      [1] https://www.w3.org/

                              WoT Security

11 January 2021

   [2]Agenda. [3]IRC log.

      [2] https://www.w3.org/WoT/IG/wiki/IG_Security_WebConf#11_January_2021
      [3] https://www.w3.org/2021/01/11-wot-sec-irc

Attendees

   Present
          Cristiano_Aguzzi, Elena_Reshetova, Jack_Dickinson,
          Kaz_Ashimura, Michael_McCool, Tomoaki_Mizushima

   Regrets
          Oliver

   Chair
          McCool

   Scribe
          cris, kaz

Contents

    1. [4]Prev minutes
    2. [5]Issue 197
    3. [6]TD Issue 998

Meeting minutes

  Prev minutes

   [7]Dec-7

      [7] https://www.w3.org/2020/12/07-wot-sec-minutes.html

   approved

  Issue 197

   [8]Issue 197

      [8] https://github.com/w3c/wot-security/issues/197

   McCool: (adds comments)

   McCool: do you think that the comment covered all our points?

   Elena: I don't any further comments on this.

   McCool: I think that it is important to have an action point on
   this issue. Anyhow if anybody has more comments please go ahead
   and comment

   <kaz> [9]McCool's comment

      [9] https://github.com/w3c/wot-security/issues/197#issuecomment-757955597

  TD Issue 998

   <kaz> [10]TD issue 998

     [10] https://github.com/w3c/wot-security/issues/197#issuecomment-757955597

   McCool: I feel that an URI template could solve the issue about
   API keys and PSK security schema

   McCool: we could extended the APISecuritySchema adding terms
   for URI templates

   McCool: at the end of the day we have to do a PR.

   <kaz> [11]McCool's comments

     [11] https://github.com/w3c/wot-thing-description/issues/998#issuecomment-757961321

   McCool: I'll try to create a PR before the next TD call

   Cristiano: I think this issue relate to another one on TD repo.

   McCool:
   … I think 923 is another issue, but I'll note it down.
   … about 923 we could cover it by adding a "template" key in the
   "in" field of API security schema

   Cristiano: I agree, it should work and cover also the query use
   case.

   McCool: I prefer to leave the query parameter to avoid backward
   compatibility problems.

   Cristiano: right

   Cristiano: about OAuth 2 we probably need more concrete use
   cases to asses its variability.

   McCool: I'll mark also the 923 as PR needed and I'll keep it
   mind while working on the next PR.

   <kaz> [12]TD Issue 923

     [12] https://github.com/w3c/wot-thing-description/issues/923

   McCool: ok, let's close the meeting.

   <kaz> [adjourned]


    Minutes manually created (not a transcript), formatted by
    [13]scribe.perl version 127 (Wed Dec 30 17:39:58 2020 UTC).

     [13] https://w3c.github.io/scribe2/scribedoc.html

Received on Tuesday, 19 January 2021 13:42:16 UTC