Agenda: Distributed Meeting 2009-04-07 v2

Agenda: W3C XML Security WG (XMLSec) v2
Teleconference 7 April 2009
Distributed Meeting #27

v2 minutes now in correct location, additional information on  
editorial items, updated pending actions list, add item on randomized  
hashing, add issues items, update 1.1 and 2.0 topics

10-12:00 am Eastern Time
Information on meeting times in various time zones:
http://www.w3.org/2008/xmlsec/Group/Overview.html#phone

Zakim Bridge:
+1.617.761.6200 conference code 965732# ('XMLSEC')
IRC Chat:
irc.w3.org (port 6665), #xmlsec
Web-based IRC (member-only):
<http://cgi.w3.org/member-bin/irc/irc.cgi>

Please note that attendance of XMLSEC WG teleconferences is restricted
to registered WG participants and persons invited by the chair.

Draft deliverables (both editors drafts and latest publications) are
available at
http://www.w3.org/2008/xmlsec/wiki/PublicationStatus

Chair: Frederick Hirsch

Regrets:

see http://www.w3.org/2008/xmlsec/Group/Overview.html#upcoming-meetings

1) Administrivia: scribe confirmation, next meeting, other

1a)   Gerald Edgar is scheduled to scribe

The current scribe list is at the end of this message, will rotate
through this list.

Scribe Instructions:
http://www.w3.org/2007/xmlsec/Group/Scribe-Instructions.html

1b)   Meeting planning: weekly meetings

This WG meets weekly on Tuesdays 10-12 Eastern unless a meeting is
cancelled.

Upcoming meeting information is available on the WG Administrative page:
http://www.w3.org/2008/xmlsec/Group/Overview.html#upcoming-meetings

Reminder, no meeting next week, 14 April.

Next meeting: 21 April 2009, Kelvin Yiu  is scheduled to scribe.
21 April, John Wray is scheduled to scribe.
5 May, Bruce Rich is scheduled to scribe.

1c) Liaisons and Coordination

See status at members page
http://www.w3.org/2008/xmlsec/Group/Overview.html#coordination

1d) Announcements

Please complete F2F Registration (12-13 May) Questionnaire

http://lists.w3.org/Archives/Member/member-xmlsec/2009Mar/0017.html

Widget Signature published, please review in next two weeks.
http://lists.w3.org/Archives/Public/public-xmlsec/2009Mar/0061.html

2) Minutes Approval

Minutes from 31 March 2009, for approval:

http://www.w3.org/2009/03/31-xmlsec-minutes.html

3) Editorial update status (Completed and pending)

Please remember to send note to public list when completing editing,
indicating what has changed and associated action. Please mark action
as pending as well.

3a) DER EncodedKeyValue proposal, ACTION-243 (Scott)

http://lists.w3.org/Archives/Public/public-xmlsec/2009Apr/0006.html  
(Scott)

3b) New XML Signature 1.1 change explanation draft

Please review, provide text for changes subsequent to FPWD if possible.

http://lists.w3.org/Archives/Public/public-xmlsec/2009Apr/0001.html
(Frederick)

http://lists.w3.org/Archives/Public/public-xmlsec/2009Apr/0018.html  
(fixed links, Frederick)

4) 1.1 Interop Planning

Status update

5) 1.1 Topics

5a) Enable generic use of randomized hashing, ISSUE-68

http://lists.w3.org/Archives/Public/public-xmlsec/2008Oct/0033.html  
(Brian)

5b) Algorithms

Web Applications WG feedback.
Elliptic curve as a should?

OpenSSL information (old)
http://lists.w3.org/Archives/Public/public-xmlsec/2009Apr/0003.html

5c) Plans to update RFC 4051?

New informational RFC...

6) 2.0 Topics

Topics going forward:

6a) Canonicalization performance and simplification
Role for EXI
Other approaches
simplifying assumptions

6b) Referencing model

Address wrapping attacks by providing additional constraint  
information - on path?
evaluate in parallel?

6c) Transform simplification

6d) Algorithms

7)  Issue review

a) Signature metadata issue, ISSUE-32  closed?

http://lists.w3.org/Archives/Public/public-xmlsec/2009Apr/0010.html  
(Frederick)

b) ISSUE-67, XSLT transform nodeset to nodeset only?

http://lists.w3.org/Archives/Public/public-xmlsec/2009Apr/0011.html  
(Thomas)

c) ISSUE-47, add long term signature ds:Object and ds:KeyInfo 2.0  
requirement, close issue?

http://lists.w3.org/Archives/Public/public-xmlsec/2009Apr/0012.html  
(Frederick)

d) ISSUE-45, multiple recipients

http://lists.w3.org/Archives/Public/public-xmlsec/2009Apr/0016.html  
(Frederick)

http://lists.w3.org/Archives/Public/public-xmlsec/2009Apr/0017.html  
(Scott)

e) Review status of ISSUE-61, ISSUE-63, ACTION-13

http://www.w3.org/2008/xmlsec/track/issues/61 , streaming requirements

http://www.w3.org/2008/xmlsec/track/issues/63 , namespace requirements

http://www.w3.org/2008/xmlsec/track/actions/13 , streaming, 2nd  
edition signature

f) Compatibility and versioning

http://lists.w3.org/Archives/Public/public-xmlsec/2009Feb/0120.html
(Konrad)

g) Namespace undeclarations

http://lists.w3.org/Archives/Public/public-xmlsec/2009Feb/0114.html
(Konrad)

8)  Action Item and Issue Review

8a) Close Pending actions

[pending review] ACTION-243: Scott Cantor to Update 1.1 draft with
DEREncodedKeyValue proposal - due 2009-03-31 [on v11]
http://www.w3.org/2008/xmlsec/track/actions/243

8b) Open Action Review

Open actions are listed in Tracker at http://www.w3.org/2008/xmlsec/track/actions/open

Procedure for closing actions: http://www.w3.org/2007/xmlsec/Group/Overview.html#closing-actions

Please review open action list and update your actions appropriately:

http://www.w3.org/2008/xmlsec/actions-open.html

9) Other Business

10) Adjourn

Scribing  list
----------------
Bruce Rich, IBM (17 July F2F am, 21 October 2008 F2F am)
Kelvin Yiu, Microsoft (21 October 2008 F2F, pm)
Hal Lockhart, Oracle (9 December 2008)
John Wray, IBM (16 December 2008)
Phillip Hallam-Baker, Verisign (F2F 13 January 2009, am)
Gerald Edgar, Boeing (F2F 13 January 2009, pm)
Shivaram Mysore, Invited Expert ( F2F 14 January 2009, pm)
Brian LaMacchia, Microsoft ( F2F 14 January 2009, pm)
Bradley Hill, Invited Expert (27 January 2009)
Sean Mullan, Sun (3 February 2009)
Pratik Datta, Oracle ( F2F 14 January 2009, pm, 10 February 2009)
Konrad Lanz, IAIK (24 February 2009, 16 July F2F am)
Juan Carlos Cruellas, Universitat Politècnica de Catalunya (17
February 2009, 16 September 2008)
Chris Solc, Adobe (3 March 2009, 20 October 2008 F2F am)
Robert Miller, MITRE (10 March 2009, 20 October 2008 F2F pm)
Magnus Nyström, EMC (17 March 2009, 11 November 2008)
Scott Cantor, invited expert (24 March 2009, 29 July 2008, 2 December
2008)
Ed Simon, Invited Expert (31 March 2009, 18 November 2008)

regards, Frederick

Frederick Hirsch, Nokia
Chair XML Security WG

Received on Tuesday, 7 April 2009 01:29:54 UTC