- From: <Frederick.Hirsch@nokia.com>
- Date: Mon, 30 Aug 2010 20:36:35 +0200
- To: <public-xmlsec@w3.org>
- CC: <Frederick.Hirsch@nokia.com>
Agenda: W3C XML Security WG Distributed Meeting #79, 31 August 2010 Distributed Meeting Logistics details and links to information at the bottom of this email. 1) Administrivia: Scribe confirmation, Agenda review, Meeting Planning, Liaisons, Announcements 2) Minutes Approval Approve 24 August 2010 minutes http://www.w3.org/2010/08/24-xmlsec-minutes.html (revised to highlight FPWD resolution) Proposed RESOLUTION: Minutes from 24 August 2010 approved. 3) Publications 3a) FPWD of Streamable XPath Profile Transition request http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/0019.html (Frederick) Changes based on early feedback http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/0025.html (Frederick) proposed RESOLUTION: Approve changes to FPWD of "XML Signature Streaming Profile of XPath 1.0" as outlined in http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/0025.html 3b) Updated WDs - XML Signature 2.0, Canonical XML 2.0, XML Security RELAX NG Schemas, XML Signature Best Practices http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/0020.html (Frederick) http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/0021.html (Frederick) 4) XML Signature 2.0 4a) IDness of attributes, ACTION-581 http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0063.html (Pratik) http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0067.html (Scott) http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0076.html (Pratik) http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0077.html (Scott) 4b) ISSUE-209 OPEN Is Verification assertion mandatory to implement, is presence/verification optional 4c) ISSUE-183 OPEN Constrain 2.0 SignedInfo canonicalization choice for 2.0 model? 4d) ISSUE-160 OPEN Define URI for Canonical XML 2.0, add section to Signature 2.0 defining Canonical XML 2.0 4e) ISSUE-43 OPEN Improvements to XML Signature schema 5) XML Encryption 5a) XML Encryption, Added LC-2420, updated draft, resolved http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0073.html (Frederick) 5b) ISSUE-132 OPEN Keep 2.0 xenc transform feature in sync with signature 2.0 6) Elliptic Curve Status on related actions, discussion. 7) Additional action and Issue Review 7a) Open Action Review Open actions are listed in Tracker at <http://www.w3.org/2008/xmlsec/track/actions/open Procedure for closing actions: <http://www.w3.org/2007/xmlsec/Group/Overview.html#closing-actions Please review open action list and update your actions appropriately: <http://www.w3.org/2008/xmlsec/actions-open.html> ACTION-280 open Produce test cases for derived keys Magnus Nyström ACTION-538 open Provide proposal related to namespace wrapping attacks once XPath profile available Meiko Jensen ACTION-548 open Ed to review XPath Profile Ed Simon ACTION-604 open Propose change for best practices for ISSUE-170 Hal Lockhart ACTION-620 open Review C14N2 references, ISSUE-200 Cynthia Martin ACTION-621 open Propose ECC-related refactoring of spec Thomas Roessle ACTION-623 open Review schema update plan, http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0017.html Magnus Nystrom ACTION-625 open Review c14n2 parameters with regards to conformance and optionality Meiko Jensen ACTION-638 open Make proposal for ISSUE-210, see also http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0043.html (uncomplicate section) Scott Cantor ACTION-643 open Propose text for best practices re ISSUE-212, attack noted in http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0020.html Meiko Jensen ACTION-644 open Propose text for Streaming XPath Profile to note that 1-pass not always possible, giving examples where 1-pass is not possible Meiko Jensen 7b) Close Pending actions These will be closed after the meeting unless concern raised before or during meeting. Please review in advance of meeting. ACTION-615: Pratik Datta to Update URI for XPath in XML Signature 2.0 ACTION-626: Pratik Datta to Remove <dsig2:DigestData> from 4.4.3.9 The dsig2:Verification element in Signature 2 ACTION-627: Pratik Datta to Add id verification proposal from meiko to Signature 2.0, http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0030.html ACTION-633: Frederick Hirsch to Review pubrules readiness of xpath 2.0, c14n2, sig 2 ACTION-634: Pratik Datta to Run pubrules check on xpath 2, c14n2, sig2 after completing edits ACTION-635: Thomas Roessler to Copy http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/att-0011/2010-08-10-xmlsec-minutes.html to http://www.w3.org/2010/08/10-xmlsec-minutes.html , remove "draft" notation, and make public style and permissions ACTION-636: Pratik Datta to Add dsig2:IDAttributes child of the dsig2:Verification element as proposed by Scott Cantor in http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0044.html ACTION-637: Pratik Datta to Update URI per http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0053.html ACTION-639: Pratik Datta to Implement changes suggested in http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0047.html , also add note in core validation section ACTION-640: Frederick Hirsch to Update references per Cynthia review http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0056.html ACTION-641: Frederick Hirsch to Generate updated publication drafts after reference updates ACTION-642: Pratik Datta to Update Streaming XPath Profile with changes in http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0055.html ACTION-645: Frederick Hirsch to Request publication FPWD of Streamable XPath Profile ACTION-646: Frederick Hirsch to Prepare manifest for publication 7c) Issue Review <http://www.w3.org/2008/xmlsec/track/issues/open> ISSUE-200 OPEN Which references are normative vs informative for C14N2 8) Other Business 9) Adjourn regards, Frederick Frederick Hirsch, Nokia Chair XML Security WG Scribing list ---------------- Bradley Hill, Invited Expert (14 July 2009) Shivaram Mysore, Invited Expert (6 November 2009 F2F, 23 June 2009) John Wray, IBM (15 Dec 2009, 1 Sept 2009) Sean Mullan, Oracle (12 January 2010, 6 October 2009) Chris Solc, Adobe (26 January 2010, 8 December 2009) Aldrin d'Souza, EMC (9 Feb 2010) Karel Wouters IBBT, (9 March 2010) Bruce Rich, IBM (30 March 2010) Magnus Nyström, Microsoft (27 April, 2010, 2 June, 2009) Thomas Roessler (4 May, 2010, 20 April 2010) Meiko Jensen (11 May, 2010) Brian LaMacchia, Microsoft (25 May 2010, 6 November 2009 F2F) Scott Cantor, invited expert (1 June 2010, 24 Nov 2009) Ed Simon, Invited Expert (15 June 2010, 25 January 2010) Cynthia Martin, MITRE (6 July 2010, 2 March 2010) Pratik Datta, Oracle (27 July 2010, 20 October 2009) Gerald Edgar, Boeing (10 August 2010, 22 June 2010, 13 April 2010) Hal Lockhart, Oracle (17 August 2010, 2 February 2010, 27 October 2009) Logistics Info: 10-12:00 am Eastern Time Information on meeting times in various time zones: http://www.w3.org/2008/xmlsec/Group/Overview.html#phone Zakim Bridge: +1.617.761.6200 conference code 965732# ('XMLSEC') IRC Chat: irc.w3.org (port 6665), #xmlsec Web-based IRC (member-only): <http://irc.w3.org/?channels=xmlsec> Please note that attendance of XMLSEC WG teleconferences is restricted to registered WG participants and persons invited by the chair. Scribe Instructions: <http://www.w3.org/2007/xmlsec/Group/Scribe-Instructions.html Liaison information: <http://www.w3.org/2008/xmlsec/Group/Overview.html#coordination Publication Status available at <http://www.w3.org/2008/xmlsec/wiki/PublicationStatus Roadmap at <http://www.w3.org/2008/xmlsec/wiki/Roadmap> ---
Received on Monday, 30 August 2010 18:37:22 UTC