Agenda: Distributed meeting 2009-01-27 v2

Agenda: W3C XML Security WG (XMLSec) v2
Teleconference 27 January 2009
Distributed Meeting #17

v2 add item for 1.1, RetrievalMethod proposal, add Best practices  
proposal, Schema Normalization
Update for requirements re algorithms addition. Updated pending action  
review. Updated scribe info.

10-12:00 am Eastern Time
Information on meeting times in various time zones:
http://www.w3.org/2008/xmlsec/Group/Overview.html#phone

Zakim Bridge:
+1.617.761.6200 conference code 965732# ('XMLSEC')
IRC Chat:
irc.w3.org (port 6665), #xmlsec
Web-based IRC (member-only):
<http://cgi.w3.org/member-bin/irc/irc.cgi>

Please note that attendance of XMLSEC WG teleconferences is restricted  
to registered WG participants and persons invited by the chair.

Chair: Frederick Hirsch

Regrets:  Konrad Lanz

see http://www.w3.org/2008/xmlsec/Group/Overview.html#upcoming-meetings

1) Administrivia: scribe confirmation, next meeting, other

1a)  Brad Hill is scheduled to scribe

The current scribe list is at the end of this message, will rotate  
through this list.

Scribe Instructions:
http://www.w3.org/2007/xmlsec/Group/Scribe-Instructions.html

1b)   Meeting planning: weekly meetings

This WG meets weekly on Tuesdays 10-12 Eastern unless a meeting is  
cancelled.

Upcoming meeting information is available on the WG Administrative page:
http://www.w3.org/2008/xmlsec/Group/Overview.html#upcoming-meetings

Next meeting 3 Feb. Sean Mullan  is scheduled to scribe.

10 Feb - Konrad Lanz to scribe, 17 Feb, Juan Carlos Cruellas scheduled  
to scribe.

1c) Liaisons and Coordination

See status at members page
http://www.w3.org/2008/xmlsec/Group/Overview.html#coordination

No new updates.

1d) Announcements

None

2) Minutes Approval

2a) Minutes from F2F, 13-14 January, for approval:

http://www.w3.org/2009/01/13-xmlsec-minutes.html

http://www.w3.org/2009/01/14-xmlsec-minutes.html

3) Issues

No new issues

4) Document status

4a) wiki updated with publication status (Frederick)

http://www.w3.org/2008/xmlsec/wiki/PublicationStatus

4b) Updated widget signature  and signature properties

please review.

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0035.html  
(Frederick)

widget signature
http://dev.w3.org/2006/waf/widgets-digsig/

properties
http://www.w3.org/2008/xmlsec/Drafts/xmldsig-properties/Overview.html

5) XML Signature 1.1

http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.htm

5a) Corrected Spelling Errors (Frederick)
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0036.html

5b) Adopt issuer serial text? (changes in two places)

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0039.html  
(Scott)

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0045.html  
(Sean)

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0046.html  
(Scott)

5c) Elliptic Curve questions (Magnus)

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0041.html

5d) EDCSA algorithm identifiers

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0043.html  
(Thomas)

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0044.html  
(Scott)

5e) Base64 clarification

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0047.html  
(Thomas)

5f) Mention/Reference Suite B?

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0050.html  
(Gerald)

5g) Additional algorithm discussion

Potential issues (Thomas)

5h) Add RetrievalMethod text

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0055.html  
(Scott)

5i) Ready to publish?

Required ECDSAwithSHA256

http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.htm#sec-AlgID

6) XML Encryption 1.1

http://www.w3.org/2008/xmlsec/Drafts/xmlenc-core-11/

6a) Corrected spelling errors carried forward from XML Encryption 1.0

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0036.html

Errata item for 1.0 XML Encryption?

6b) Key Wrapping IETF duplication rationale?

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0042.html  
(Thomas)

6c) Suite B reference?

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0050.html  
(Gerald)

6d) Ready to publish?

REQUIRED Elliptic Curve Diffie-Hellman (Ephemeral-Static mode)

http://www.w3.org/2008/xmlsec/Drafts/xmlenc-core-11/#sec-AlgID

7) Algorithms Draft

7a) Updated formatting

http://www.w3.org/2008/xmlsec/Drafts/xmlsec-algorithms/Overview.html  
(Thomas)

7b) Ready to publish?

8) XML Signature Transform Simplification: Requirements and Design

8a) Editorial updates and review

TBD

8b) Ready to publish?

9) XML Security Use Cases and Requirements

9a) Proposed Algorithms Section and removal of empty sections

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0056.html  
(revised, Frederick)

9b) Move canonicalization requirements to transforms document

Status?

9c) Signing HTTP messages

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0040.html  
(Scott)

9d) Revising Canonicalization Requirements

http://lists.w3.org/Archives/Public/public-xmlsec/2008Nov/0006.html  
(Juan Carlos)

9e) Ready to publish?

10) Best Practices

http://www.w3.org/2007/xmlsec/Drafts/xmldsig-bestpractices/

10a) updated for timestamp, additional proposed changes

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0038.html  
(Frederick)

10b) additional best practice - Schema Normalization

http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0054.html  
(Scott)


10b) Earlier comments from Juan Carlos

http://www.w3.org/2008/xmlsec/Drafts/best-practices/comments-bhill-jcc.html 
  (Edited document)

http://lists.w3.org/Archives/Public/public-xmlsec/2008Oct/0020.html  
(Frederick)

http://lists.w3.org/Archives/Public/public-xmlsec/2008Oct/0030.html  
(Juan Carlos)

10c) Ready to publish?

11) Derived Keys

Revised Draft
http://www.w3.org/2008/xmlsec/Drafts/derived-key/derived-keys.html  
(Magnus)

12) Action Item and Issue Review

12a) Close Pending actions
[pending review] ACTION-133: Frederick Hirsch to Update best practice  
with timestamp proposed changes - due 2009-01-13 [on ]
http://www.w3.org/2008/xmlsec/track/actions/133

[pending review] ACTION-152: Brian LaMacchia to Implement versioning  
change in sig and encryption 1.1 - due 2009-01-20 [on ]
http://www.w3.org/2008/xmlsec/track/actions/152

[pending review] ACTION-159: Brian LaMacchia to Include errata into  
the 1.1 documents - due 2009-01-20 [on ]
http://www.w3.org/2008/xmlsec/track/actions/159


[pending review] ACTION-166: Scott Cantor to Address X.509 issuer  
serial number length - due 2009-01-21 [on ]
http://www.w3.org/2008/xmlsec/track/actions/166

[pending review] ACTION-172: Frederick Hirsch to Update the  
Publication Status page on the Wiki - due 2009-01-21 [on ]
http://www.w3.org/2008/xmlsec/track/actions/172

[pending review] ACTION-173: Scott Cantor to Draft some text in  
response to ISSUE-51 - due 2009-01-21 [on schema normalization]
http://www.w3.org/2008/xmlsec/track/actions/173

[pending review] ACTION-176: Scott Cantor to Draft text for v1.1  
signaling possible deprecation of Transforms in RetrievalMethod in 2.0  
- due 2009-01-22 [on v11]
http://www.w3.org/2008/xmlsec/track/actions/176


[pending review] ACTION-179: Brian LaMacchia to Either update the v1.1  
draft with a consistent namespace URI suitable for ECC and  
OCSPResponse, or come back with technical reasons why that isn't  
possible - due 2009-01-22 [on ]
http://www.w3.org/2008/xmlsec/track/actions/179

[pending review] ACTION-182: Brian LaMacchia to Update 1.1 namespace -  
due 2009-01-22 [on ]
http://www.w3.org/2008/xmlsec/track/actions/182


[pending review] ACTION-183: Frederick Hirsch to update widget  
signature and signature property drafts based on f2f discussion - due  
2009-01-16 [on ]
http://www.w3.org/2008/xmlsec/track/actions/183

[pending review] ACTION-184: Frederick Hirsch to Fix spelling in xml  
signature 1.1 and xml encryption 1.1 - due 2009-01-16 [on ]
http://www.w3.org/2008/xmlsec/track/actions/184

12b) Open Action Review

Open actions are listed in Tracker at http://www.w3.org/2008/xmlsec/track/actions/open

Procedure for closing actions: http://www.w3.org/2007/xmlsec/Group/Overview.html#closing-actions

Please review open action list and update your actions appropriately:

http://www.w3.org/2008/xmlsec/actions-open.html

13) Other Business

14) Adjourn

Scribing  list
----------------
Konrad Lanz, IAIK (16 July F2F am)
Sean Mullan, Sun (12 August 2008)
Bradley Hill, Invited Expert (9 September 2008)
Juan Carlos Cruellas, Universitat Politècnica de Catalunya (16  
September 2008)
Chris Solc, Adobe (20 October 2008 F2F am)
Robert Miller, MITRE (20 October 2008 F2F pm)
Bruce Rich, IBM (17 July F2F am, 21 October 2008 F2F am)
Kelvin Yiu, Microsoft (21 October 2008 F2F, pm)
Magnus Nyström, EMC (11 November 2008)
Ed Simon, Invited Expert (18 November 2008)
Scott Cantor, invited expert (29 July 2008, 2 December 2008)
Hal Lockhart, Oracle (9 December 2008)
John Wray, IBM (16 December 2008)
Phillip Hallam-Baker, Verisign (F2F 13 January 2009, am)
Gerald Edgar, Boeing (F2F 13 January 2009, pm)
Shivaram Mysore, Invited Expert ( F2F 14 January 2009, pm)
Pratik Datta, Oracle ( F2F 14 January 2009, pm)
Brian LaMacchia, Microsoft ( F2F 14 January 2009, pm)

regards, Frederick

Frederick Hirsch, Nokia
Chair XML Security WG

Received on Monday, 26 January 2009 15:23:24 UTC