Agenda - Distributed Meeting 2010-08-31

Agenda: W3C XML Security WG Distributed Meeting #79,  31 August  2010  Distributed Meeting

Logistics details and links to information at the bottom of this email.

1) Administrivia: Scribe confirmation, Agenda review, Meeting  Planning, Liaisons, Announcements

2) Minutes Approval

Approve 24 August 2010 minutes

http://www.w3.org/2010/08/24-xmlsec-minutes.html (revised to highlight FPWD resolution)

Proposed RESOLUTION: Minutes from 24 August 2010 approved.

3) Publications

3a) FPWD of Streamable XPath Profile

Transition request

http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/0019.html (Frederick)

Changes based on early feedback

http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/0025.html (Frederick)

proposed RESOLUTION: Approve changes to FPWD of "XML Signature Streaming Profile of XPath 1.0" as outlined in http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/0025.html 

3b) Updated WDs - XML Signature 2.0, Canonical XML 2.0, XML Security RELAX NG Schemas, XML Signature Best Practices

http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/0020.html (Frederick)

http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/0021.html (Frederick)

4) XML Signature 2.0

4a)  IDness of attributes, ACTION-581

http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0063.html (Pratik)

http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0067.html (Scott)

http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0076.html (Pratik)

http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0077.html (Scott)

4b) ISSUE-209	OPEN	Is Verification assertion mandatory to implement, is presence/verification optional

4c) ISSUE-183	OPEN	Constrain 2.0 SignedInfo canonicalization choice for 2.0 model?

4d) ISSUE-160	OPEN	Define URI for Canonical XML 2.0, add section to Signature 2.0 defining Canonical XML 2.0

4e) ISSUE-43	OPEN	Improvements to XML Signature schema

5) XML Encryption

5a) XML Encryption, Added LC-2420, updated draft, resolved

http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0073.html (Frederick)

5b) ISSUE-132	OPEN	Keep 2.0 xenc transform feature in sync with signature 2.0

6) Elliptic Curve

Status on related actions, discussion.

7)  Additional action and Issue Review

7a) Open Action Review

Open actions are listed in Tracker at <http://www.w3.org/2008/xmlsec/track/actions/open

Procedure for closing actions: <http://www.w3.org/2007/xmlsec/Group/Overview.html#closing-actions

Please review open action list and update your actions appropriately:

<http://www.w3.org/2008/xmlsec/actions-open.html>

ACTION-280	open	Produce test cases for derived keys	Magnus Nyström

ACTION-538	open	Provide proposal related to namespace wrapping attacks once XPath profile available	Meiko Jensen

ACTION-548	open	Ed to review XPath Profile	Ed Simon

ACTION-604	open	Propose change for best practices for ISSUE-170	Hal Lockhart

ACTION-620	open	Review C14N2 references, ISSUE-200	Cynthia Martin

ACTION-621	open	Propose ECC-related refactoring of spec	Thomas Roessle

ACTION-623	open	Review schema update plan, http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0017.html	Magnus Nystrom

ACTION-625	open	Review c14n2 parameters with regards to conformance and optionality	Meiko Jensen
 
ACTION-638	open	Make proposal for ISSUE-210, see also http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0043.html (uncomplicate section)	Scott Cantor

ACTION-643	open	Propose text for best practices re ISSUE-212, attack noted in http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0020.html	Meiko Jensen

ACTION-644	open	Propose text for Streaming XPath Profile to note that 1-pass not always possible, giving examples where 1-pass is not possible	Meiko Jensen

7b) Close Pending actions

These will be closed after the meeting unless concern raised before  or  during meeting. Please review in advance of meeting.

ACTION-615: Pratik Datta to Update URI for XPath in XML Signature 2.0

ACTION-626: Pratik Datta to Remove <dsig2:DigestData> from 4.4.3.9 The dsig2:Verification element in Signature 2

ACTION-627: Pratik Datta to Add id verification proposal from meiko to Signature 2.0, http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0030.html

ACTION-633: Frederick Hirsch to Review pubrules readiness of xpath 2.0, c14n2, sig 2

ACTION-634: Pratik Datta to Run pubrules check on xpath 2, c14n2, sig2 after completing edits

ACTION-635: Thomas Roessler to Copy http://lists.w3.org/Archives/Member/member-xmlsec/2010Aug/att-0011/2010-08-10-xmlsec-minutes.html to http://www.w3.org/2010/08/10-xmlsec-minutes.html , remove "draft" notation, and make public style and permissions

ACTION-636: Pratik Datta to Add dsig2:IDAttributes child of the dsig2:Verification element as proposed by Scott Cantor in http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0044.html

ACTION-637: Pratik Datta to Update URI per http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0053.html

ACTION-639: Pratik Datta to Implement changes suggested in http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0047.html , also add note in core validation section

ACTION-640: Frederick Hirsch to Update references per Cynthia review http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0056.html

ACTION-641: Frederick Hirsch to Generate updated publication drafts after reference updates

ACTION-642: Pratik Datta to Update Streaming XPath Profile with changes in http://lists.w3.org/Archives/Public/public-xmlsec/2010Aug/0055.html

ACTION-645: Frederick Hirsch to Request publication FPWD of Streamable XPath Profile

ACTION-646: Frederick Hirsch to Prepare manifest for publication

7c)  Issue Review

<http://www.w3.org/2008/xmlsec/track/issues/open>

ISSUE-200	OPEN	Which references are normative vs informative for C14N2

8) Other Business

9) Adjourn

regards, Frederick

Frederick Hirsch, Nokia
Chair XML Security WG

Scribing  list
----------------
Bradley Hill, Invited Expert (14 July 2009)
Shivaram Mysore, Invited Expert (6 November 2009 F2F, 23 June 2009)
John Wray, IBM (15 Dec 2009, 1 Sept 2009)
Sean Mullan, Oracle (12 January 2010, 6 October 2009)
Chris Solc, Adobe (26 January 2010, 8 December 2009)
Aldrin d'Souza, EMC (9 Feb 2010)
Karel Wouters IBBT, (9 March 2010)
Bruce Rich, IBM (30 March 2010)
Magnus Nyström, Microsoft (27 April, 2010, 2 June, 2009)
Thomas Roessler (4 May, 2010, 20 April 2010)
Meiko Jensen (11 May, 2010)
Brian LaMacchia, Microsoft (25 May 2010, 6 November 2009 F2F)
Scott Cantor, invited expert (1 June 2010, 24 Nov 2009)
Ed Simon, Invited Expert (15 June 2010, 25 January 2010)
Cynthia Martin, MITRE (6 July 2010, 2 March 2010)
Pratik Datta, Oracle (27 July 2010, 20 October 2009)
Gerald Edgar, Boeing (10 August 2010, 22 June 2010, 13 April 2010)
Hal Lockhart, Oracle (17 August 2010, 2 February 2010, 27 October 2009)

Logistics Info:

10-12:00 am Eastern Time
Information on meeting times in various time zones:
http://www.w3.org/2008/xmlsec/Group/Overview.html#phone

Zakim Bridge:
+1.617.761.6200 conference code 965732# ('XMLSEC')

IRC Chat: irc.w3.org (port 6665), #xmlsec

Web-based IRC (member-only): <http://irc.w3.org/?channels=xmlsec>

Please note that attendance of XMLSEC WG teleconferences is  
restricted  to registered WG participants and persons invited by the  
chair.

Scribe Instructions: <http://www.w3.org/2007/xmlsec/Group/Scribe-Instructions.html

Liaison information: <http://www.w3.org/2008/xmlsec/Group/Overview.html#coordination

Publication Status available at <http://www.w3.org/2008/xmlsec/wiki/PublicationStatus

Roadmap at <http://www.w3.org/2008/xmlsec/wiki/Roadmap>
---

Received on Monday, 30 August 2010 18:37:22 UTC