- From: Frederick Hirsch <frederick.hirsch@nokia.com>
- Date: Mon, 26 Jan 2009 10:22:42 -0500
- To: XMLSec WG Public List <public-xmlsec@w3.org>
- Cc: Frederick Hirsch <frederick.hirsch@nokia.com>
Agenda: W3C XML Security WG (XMLSec) v2
Teleconference 27 January 2009
Distributed Meeting #17
v2 add item for 1.1, RetrievalMethod proposal, add Best practices
proposal, Schema Normalization
Update for requirements re algorithms addition. Updated pending action
review. Updated scribe info.
10-12:00 am Eastern Time
Information on meeting times in various time zones:
http://www.w3.org/2008/xmlsec/Group/Overview.html#phone
Zakim Bridge:
+1.617.761.6200 conference code 965732# ('XMLSEC')
IRC Chat:
irc.w3.org (port 6665), #xmlsec
Web-based IRC (member-only):
<http://cgi.w3.org/member-bin/irc/irc.cgi>
Please note that attendance of XMLSEC WG teleconferences is restricted
to registered WG participants and persons invited by the chair.
Chair: Frederick Hirsch
Regrets: Konrad Lanz
see http://www.w3.org/2008/xmlsec/Group/Overview.html#upcoming-meetings
1) Administrivia: scribe confirmation, next meeting, other
1a) Brad Hill is scheduled to scribe
The current scribe list is at the end of this message, will rotate
through this list.
Scribe Instructions:
http://www.w3.org/2007/xmlsec/Group/Scribe-Instructions.html
1b) Meeting planning: weekly meetings
This WG meets weekly on Tuesdays 10-12 Eastern unless a meeting is
cancelled.
Upcoming meeting information is available on the WG Administrative page:
http://www.w3.org/2008/xmlsec/Group/Overview.html#upcoming-meetings
Next meeting 3 Feb. Sean Mullan is scheduled to scribe.
10 Feb - Konrad Lanz to scribe, 17 Feb, Juan Carlos Cruellas scheduled
to scribe.
1c) Liaisons and Coordination
See status at members page
http://www.w3.org/2008/xmlsec/Group/Overview.html#coordination
No new updates.
1d) Announcements
None
2) Minutes Approval
2a) Minutes from F2F, 13-14 January, for approval:
http://www.w3.org/2009/01/13-xmlsec-minutes.html
http://www.w3.org/2009/01/14-xmlsec-minutes.html
3) Issues
No new issues
4) Document status
4a) wiki updated with publication status (Frederick)
http://www.w3.org/2008/xmlsec/wiki/PublicationStatus
4b) Updated widget signature and signature properties
please review.
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0035.html
(Frederick)
widget signature
http://dev.w3.org/2006/waf/widgets-digsig/
properties
http://www.w3.org/2008/xmlsec/Drafts/xmldsig-properties/Overview.html
5) XML Signature 1.1
http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.htm
5a) Corrected Spelling Errors (Frederick)
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0036.html
5b) Adopt issuer serial text? (changes in two places)
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0039.html
(Scott)
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0045.html
(Sean)
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0046.html
(Scott)
5c) Elliptic Curve questions (Magnus)
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0041.html
5d) EDCSA algorithm identifiers
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0043.html
(Thomas)
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0044.html
(Scott)
5e) Base64 clarification
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0047.html
(Thomas)
5f) Mention/Reference Suite B?
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0050.html
(Gerald)
5g) Additional algorithm discussion
Potential issues (Thomas)
5h) Add RetrievalMethod text
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0055.html
(Scott)
5i) Ready to publish?
Required ECDSAwithSHA256
http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.htm#sec-AlgID
6) XML Encryption 1.1
http://www.w3.org/2008/xmlsec/Drafts/xmlenc-core-11/
6a) Corrected spelling errors carried forward from XML Encryption 1.0
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0036.html
Errata item for 1.0 XML Encryption?
6b) Key Wrapping IETF duplication rationale?
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0042.html
(Thomas)
6c) Suite B reference?
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0050.html
(Gerald)
6d) Ready to publish?
REQUIRED Elliptic Curve Diffie-Hellman (Ephemeral-Static mode)
http://www.w3.org/2008/xmlsec/Drafts/xmlenc-core-11/#sec-AlgID
7) Algorithms Draft
7a) Updated formatting
http://www.w3.org/2008/xmlsec/Drafts/xmlsec-algorithms/Overview.html
(Thomas)
7b) Ready to publish?
8) XML Signature Transform Simplification: Requirements and Design
8a) Editorial updates and review
TBD
8b) Ready to publish?
9) XML Security Use Cases and Requirements
9a) Proposed Algorithms Section and removal of empty sections
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0056.html
(revised, Frederick)
9b) Move canonicalization requirements to transforms document
Status?
9c) Signing HTTP messages
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0040.html
(Scott)
9d) Revising Canonicalization Requirements
http://lists.w3.org/Archives/Public/public-xmlsec/2008Nov/0006.html
(Juan Carlos)
9e) Ready to publish?
10) Best Practices
http://www.w3.org/2007/xmlsec/Drafts/xmldsig-bestpractices/
10a) updated for timestamp, additional proposed changes
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0038.html
(Frederick)
10b) additional best practice - Schema Normalization
http://lists.w3.org/Archives/Public/public-xmlsec/2009Jan/0054.html
(Scott)
10b) Earlier comments from Juan Carlos
http://www.w3.org/2008/xmlsec/Drafts/best-practices/comments-bhill-jcc.html
(Edited document)
http://lists.w3.org/Archives/Public/public-xmlsec/2008Oct/0020.html
(Frederick)
http://lists.w3.org/Archives/Public/public-xmlsec/2008Oct/0030.html
(Juan Carlos)
10c) Ready to publish?
11) Derived Keys
Revised Draft
http://www.w3.org/2008/xmlsec/Drafts/derived-key/derived-keys.html
(Magnus)
12) Action Item and Issue Review
12a) Close Pending actions
[pending review] ACTION-133: Frederick Hirsch to Update best practice
with timestamp proposed changes - due 2009-01-13 [on ]
http://www.w3.org/2008/xmlsec/track/actions/133
[pending review] ACTION-152: Brian LaMacchia to Implement versioning
change in sig and encryption 1.1 - due 2009-01-20 [on ]
http://www.w3.org/2008/xmlsec/track/actions/152
[pending review] ACTION-159: Brian LaMacchia to Include errata into
the 1.1 documents - due 2009-01-20 [on ]
http://www.w3.org/2008/xmlsec/track/actions/159
[pending review] ACTION-166: Scott Cantor to Address X.509 issuer
serial number length - due 2009-01-21 [on ]
http://www.w3.org/2008/xmlsec/track/actions/166
[pending review] ACTION-172: Frederick Hirsch to Update the
Publication Status page on the Wiki - due 2009-01-21 [on ]
http://www.w3.org/2008/xmlsec/track/actions/172
[pending review] ACTION-173: Scott Cantor to Draft some text in
response to ISSUE-51 - due 2009-01-21 [on schema normalization]
http://www.w3.org/2008/xmlsec/track/actions/173
[pending review] ACTION-176: Scott Cantor to Draft text for v1.1
signaling possible deprecation of Transforms in RetrievalMethod in 2.0
- due 2009-01-22 [on v11]
http://www.w3.org/2008/xmlsec/track/actions/176
[pending review] ACTION-179: Brian LaMacchia to Either update the v1.1
draft with a consistent namespace URI suitable for ECC and
OCSPResponse, or come back with technical reasons why that isn't
possible - due 2009-01-22 [on ]
http://www.w3.org/2008/xmlsec/track/actions/179
[pending review] ACTION-182: Brian LaMacchia to Update 1.1 namespace -
due 2009-01-22 [on ]
http://www.w3.org/2008/xmlsec/track/actions/182
[pending review] ACTION-183: Frederick Hirsch to update widget
signature and signature property drafts based on f2f discussion - due
2009-01-16 [on ]
http://www.w3.org/2008/xmlsec/track/actions/183
[pending review] ACTION-184: Frederick Hirsch to Fix spelling in xml
signature 1.1 and xml encryption 1.1 - due 2009-01-16 [on ]
http://www.w3.org/2008/xmlsec/track/actions/184
12b) Open Action Review
Open actions are listed in Tracker at http://www.w3.org/2008/xmlsec/track/actions/open
Procedure for closing actions: http://www.w3.org/2007/xmlsec/Group/Overview.html#closing-actions
Please review open action list and update your actions appropriately:
http://www.w3.org/2008/xmlsec/actions-open.html
13) Other Business
14) Adjourn
Scribing list
----------------
Konrad Lanz, IAIK (16 July F2F am)
Sean Mullan, Sun (12 August 2008)
Bradley Hill, Invited Expert (9 September 2008)
Juan Carlos Cruellas, Universitat Politècnica de Catalunya (16
September 2008)
Chris Solc, Adobe (20 October 2008 F2F am)
Robert Miller, MITRE (20 October 2008 F2F pm)
Bruce Rich, IBM (17 July F2F am, 21 October 2008 F2F am)
Kelvin Yiu, Microsoft (21 October 2008 F2F, pm)
Magnus Nyström, EMC (11 November 2008)
Ed Simon, Invited Expert (18 November 2008)
Scott Cantor, invited expert (29 July 2008, 2 December 2008)
Hal Lockhart, Oracle (9 December 2008)
John Wray, IBM (16 December 2008)
Phillip Hallam-Baker, Verisign (F2F 13 January 2009, am)
Gerald Edgar, Boeing (F2F 13 January 2009, pm)
Shivaram Mysore, Invited Expert ( F2F 14 January 2009, pm)
Pratik Datta, Oracle ( F2F 14 January 2009, pm)
Brian LaMacchia, Microsoft ( F2F 14 January 2009, pm)
regards, Frederick
Frederick Hirsch, Nokia
Chair XML Security WG
Received on Monday, 26 January 2009 15:23:24 UTC