12:11:59 RRSAgent has joined #xmlsec 12:11:59 logging to http://www.w3.org/2007/06/05-xmlsec-irc 12:16:08 Meeting: XML Security Specifications Maintenance WG Teleconference 4 June 2007, Distributed Meeting #5 12:16:26 Chair: Frederick Hirsch 12:16:46 Scribe: Konrad Lanz 12:18:14 Agenda: http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0007.html 12:19:20 zakim, this will be XMLSEC 12:19:20 ok, klanz2; I see T&S_XMLSEC()9:00AM scheduled to start in 41 minutes 12:20:00 RRSAgent, make log public 12:48:06 fjh has joined #xmlsec 12:48:21 zakim, who is on the call? 12:48:21 T&S_XMLSEC()9:00AM has not yet started, fjh 12:48:22 On IRC I see fjh, RRSAgent, Zakim, klanz2, trackbot-ng 12:48:45 Zakim,this will be xmlsec 12:48:45 ok, fjh; I see T&S_XMLSEC()9:00AM scheduled to start in 12 minutes 12:49:21 Meeting: XML Security Specifications Maintenance WG Conference Call 12:49:32 Chair: Frederick Hirsch 12:50:18 Agenda: http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0007.html 12:52:41 T&S_XMLSEC()9:00AM has now started 12:52:48 +Frederick_Hirsch 12:52:49 RRSAgent, make log member 12:52:58 zakim, who is here? 12:52:58 On the phone I see Frederick_Hirsch 12:52:59 On IRC I see fjh, RRSAgent, Zakim, klanz2, trackbot-ng 12:54:46 +??P6 12:56:22 jcc has joined #xmlsec 12:57:50 Sean has joined #xmlsec 12:59:09 +EdSimon 12:59:40 zakim, who is here? 12:59:40 On the phone I see Frederick_Hirsch, klanz2, EdSimon 12:59:41 On IRC I see Sean, jcc, fjh, RRSAgent, Zakim, klanz2, trackbot-ng 12:59:42 +??P8 12:59:58 esimon2 has joined #xmlsec 13:00:19 + +1.617.876.aaaa 13:00:39 zakim, ? is sean 13:00:39 sorry, klanz2, I do not recognize a party named '?' 13:00:52 tlr has joined #xmlsec 13:01:04 zakim, call thomas-skype 13:01:04 ok, tlr; the call is being made 13:01:05 +Thomas 13:01:16 +Hal 13:01:39 hal has joined #xmlsec 13:01:40 zakim, drop thomas 13:01:40 Thomas is being disconnected 13:01:41 -Thomas 13:01:50 jcc has left #xmlsec 13:01:59 TOPIC: Administrivia: scribe confirmation, next meeting 13:02:08 zakim, who is here? 13:02:08 On the phone I see Frederick_Hirsch, klanz2, EdSimon, jcc, sean, Hal 13:02:08 On IRC I see hal, tlr, esimon2, Sean, fjh, RRSAgent, Zakim, klanz2, trackbot-ng 13:02:08 zakim, call thomas-781 13:02:13 ok, tlr; the call is being made 13:02:15 +Thomas 13:02:19 zakim, drop thomas 13:02:25 Thomas is being disconnected 13:02:27 -Thomas 13:02:30 zakim, call thomas-mobile-de 13:02:39 ok, tlr; the call is being made 13:02:41 +Thomas 13:02:47 +grw 13:02:47 jcc has joined #xmlsec 13:03:08 zakim, who is here? 13:03:08 On the phone I see Frederick_Hirsch, klanz2, EdSimon, jcc, sean, Hal, Thomas, grw 13:03:10 On IRC I see jcc, hal, tlr, esimon2, Sean, fjh, RRSAgent, Zakim, klanz2, trackbot-ng 13:03:51 zakim, call thomas-skype 13:03:51 ok, tlr; the call is being made 13:03:53 +Thomas 13:04:13 -Thomas 13:04:14 +RobMiller 13:05:04 Meeting: XML Sec WG weekly 13:05:08 Date: 5 June 2007 13:05:12 HAL: not in office next meeting 13:05:15 zakim, who is here? 13:05:16 On the phone I see Frederick_Hirsch, klanz2, EdSimon, jcc, sean, Thomas, Hal, grw, RobMiller 13:05:19 On IRC I see jcc, hal, tlr, esimon2, Sean, fjh, RRSAgent, Zakim, klanz2, trackbot-ng 13:05:30 ScribeNick: klanz2 13:05:44 Agenda: http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0007.html 13:05:52 Chair: fjh 13:06:02 TOPIC: Review and approval of last meeting's minutes 13:06:18 minutes from last meeting http://www.w3.org/2007/05/29-xmlsec-minutes 13:06:34 resolution: minutes approved 13:06:50 RESOLUTION: minutes approved 13:07:05 TOPIC: Action item review 13:07:30 PHB2 has joined #xmlsec 13:07:32 ACTION-26 continues 13:07:34 zakim, code 13:07:34 I don't understand 'code', PHB2 13:07:36 TOPIC: Action-26 13:07:43 tlr: no progress 13:07:55 zakim, what is the code? 13:07:55 the conference code is 965732 (tel:+1.617.761.6200 tel:+33.4.89.06.34.99 tel:+44.117.370.6152), PHB2 13:08:20 tlr: couple of issues need resolution and interaction with the xml coordination group 13:08:24 +PHB 13:08:34 TOPIC: Action-28 13:09:15 TOPIC: Action-34 13:09:43 Closed ACTION-28 13:09:55 klanz2: no conformance affecting changes 13:10:06 TOPIC: ACTION-35 13:10:22 fjh: still open and on rsalz 13:10:49 TOPIC: ACTION-36 13:11:02 jcc: action should be closed 13:11:23 TOPIC: ACTION-37 13:11:31 TOPIC: ACTION-38 13:11:34 message from JC for action 36: http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html 13:11:40 Close ACTION-38 13:12:02 TOPIC ACTION-40 13:12:13 CLOSE ACTION-40 13:12:36 TOPIC ACTION-41 13:13:25 Action 40: the Java SE implementation doesn't do any of the DNAME encoding rules; we just encode as RFC 2253 String 13:13:28 ACTION-42 clodsed 13:13:33 s/clodsed/ 13:13:38 s/clodsed/closed/ 13:13:40 TOPIC: Workshop 13:13:40 hal has joined #xmlsec 13:13:44 s/Action 40/Action 41 13:13:49 s/Action 40/Action 41/ 13:14:19 fjh: submission for approval next wednesday 13:14:36 rmiller has joined #xmlsec 13:14:44 http://lists.w3.org/Archives/Member/member-xmlsec-maintwg/2007Jun/0000.html 13:14:44 fjh, chair hat off: sent message to list with some tweaks 13:15:35 fhj: add an item to capture other standards experience 13:15:42 +1 to the proposed changes 13:15:43 Experience and consequences of building other specifications or standards with the XML Signature and XML Encryption suites of specifications as a basis 13:15:45 ptrimint has joined #xmlsec 13:16:07 Insight into the interaction of the XML Security specifications with the evolving XML environment 13:16:33 fhj: other changes are editorial 13:16:48 RESOLUTION: Changes accepted 13:16:50 RESOLUTION: Changes by fhj are acceoted 13:17:02 ACTION: thomas to update CFP draft as suggested in http://lists.w3.org/Archives/Member/member-xmlsec-maintwg/2007Jun/0000.html 13:17:02 Created ACTION-44 - Update CFP draft as suggested in http://lists.w3.org/Archives/Member/member-xmlsec-maintwg/2007Jun/0000.html [on Thomas Roessler - due 2007-06-12]. 13:17:03 hi, I am Panos Trimintzios from ENISA .. just logged in (apologies for delay) 13:17:04 s/fhj/fjh 13:17:14 zakim, code? 13:17:14 the conference code is 965732 (tel:+1.617.761.6200 tel:+33.4.89.06.34.99 tel:+44.117.370.6152), tlr 13:17:28 TOPIC: Logitics for the Workshop 13:17:31 zakim, I am thomas 13:17:31 ok, tlr, I now associate you with Thomas 13:17:33 zakim, mute me 13:17:33 Thomas should now be muted 13:18:03 hal has joined #xmlsec 13:18:09 hal: largest room for people seated at tables for 30 people 13:18:29 phb: can contact VSGN and see if there's a venue there 13:18:30 who is this? 13:18:37 ... have rooms that are large enough ... 13:19:01 phb: makes a case at verisign to get room 13:19:32 http://www.w3.org/2007/xmlsec/ws/cfp 13:19:43 zakim, unmute thomas 13:19:43 Thomas should no longer be muted 13:19:45 -PHB 13:20:00 fjh: can we get this out before next tuesday 13:20:07 +PHB 13:20:48 tlr: give necessary information to phil 13:21:06 phb: will be able to tell in a couple of days 13:21:15 ACTION: TLR to give information on hosting to PHB 13:21:15 Created ACTION-45 - Give information on hosting to PHB [on Thomas Roessler - due 2007-06-12]. 13:21:24 ACTION-45 due right away 13:21:31 ACTION: PHB to confirm hosting by end of the week 13:21:31 Created ACTION-46 - Confirm hosting by end of the week [on Phillip Hallam-Baker - due 2007-06-12]. 13:21:56 fhj: is it likely that verisign will host 13:22:13 s/fhj/fjh 13:22:20 tlr: there can't be NDAs 13:22:53 hal_ has joined #xmlsec 13:23:24 TOPIC: Dates 13:23:48 fjh: workshop nine to five 13:24:21 .. considering changing the hosting from bea to verisign 13:24:36 konrad, please only use "TOPIC" for a new agenda item 13:24:46 TOPIC: 4c) Other workshop issues. 13:25:04 fjh: willing to chair 13:25:22 tlr: there is critical mass to do program comittee work 13:25:39 fjh: on regular call or extra calls 13:25:53 tlr: if possible on regular calls 13:26:21 tlr: split the burden among the group into sessions 13:27:04 fjh: different workgroup members should participate in recording session oputcome to generate final reports 13:27:23 NOTE: fhj offers to chair 13:27:33 s/fhj/fjh 13:27:44 TOPIC: 5) Decryption Transform to Last Call 13:28:41 fjh: do not neded to wairt for response to ACTION-40 13:29:01 tlr: plan is to publish current editor's draft 13:29:55 Pending changes: (1) namespaces; (2) change reference to C14N 1.1 to be more precise 13:30:39 Group can either trust editors to do this and just move ahead to do Last Call FPWD, or look at updated draft @ next meeting 13:30:51 I'm fine either way. 13:31:00 klanz2: +1 13:31:26 ACTION: tlr and fjh to update editors draft for next meeting 13:31:26 Created ACTION-47 - And fjh to update editors draft for next meeting [on Thomas Roessler - due 2007-06-12]. 13:32:09 TOPIC: 6) C14N11 Review 13:32:36 http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007May/0044.html 13:33:31 klanz2: had action to determine if conformance changes between Dec and later version, none found 13:33:49 ... wrote implementation to test, found a separate issue with algorithm in appendix 13:34:07 ... proposed changed version , also added set of test cases 13:34:38 ... primary issue .. processing 13:35:45 fjh: rsalz not on the call 13:36:01 http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html 13:37:47 klanz2: xpath filters not defined for canonicalization as such 13:38:23 jcc: example in section 3.8 does not relate XPATH-Filter 13:38:46 q+ 13:39:27 fjh: put proposal on the list 13:39:56 Create ACTION on jcc example in section 3.8 does not relate XPATH-Filter 13:40:08 ACTION:: jcc to make proposal to resolve issue on http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html 13:40:34 ACTION: jcc to make proposal to resolve issue on http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html 13:40:34 Sorry, couldn't find user - jcc 13:40:46 ACTION: cruellas to make proposal to resolve issue on http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html 13:40:46 Created ACTION-48 - Make proposal to resolve issue on http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html [on Juan Carlos Cruellas - due 2007-06-12]. 13:41:24 jcc: asks for link to examples related to appendix a 13:41:32 http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007May/att-0044/Apendix.html 13:41:56 that's the related mail http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007May/0044.html 13:43:02 sean: would help if konrad has examples showing output before changes he has made, and how different or change needed 13:43:31 chat is okay 13:44:15 ACTION: konrad to illustrate proposed changes by example 13:44:15 Created ACTION-49 - Illustrate proposed changes by example [on Konrad Lanz - due 2007-06-12]. 13:44:28 esimon2: +1 to sean 13:44:28 ed: +1 to sean 13:44:58 "no/.". -> "/" before 13:45:14 "no/.." -> "" now 13:45:33 q+ 13:45:43 http://www.w3.org/TR/DSig-usage/ 13:46:03 TOPIC: 7) Algorithm URIs; dsig-usage note 13:46:44 tlr: we will have to use a different uri in the future 13:47:20 tlr: given the input the uri will change 13:47:36 tlr: how will the xml core wg react? 13:49:24 klanz2: some changes to c14n11 needed, conformance changing, during C14N11 CR 13:50:16 TOPIC: 8) Editorial review - XML Signature 13:50:17 zakim, mute me 13:50:17 Thomas should now be muted 13:50:25 http://www.w3.org/2001/10/xmldsig-errata#E01 13:50:37 TOPIC: 8a) Errata 01 (Distinguished Name) issue 13:51:36 sean: sun only does RFC 2253 and none of the special rules in XMLDSIG 13:51:58 sean: key issue is whether rules are optional 13:52:24 ed: doesn't think the DNAME encoding rules are optional 13:53:10 klanz2: was optional in text, lowercase should, test cases indicated this 13:53:58 sean: need to know what implementations are doing 13:55:05 klanz2: give warning regarding unusual DNames in certs, not common 13:55:37 ed: proposed some changes 13:55:37 http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007May/0050.html 13:56:55 q+ 13:56:56 q+ 13:56:59 q- 13:57:11 ack sean 13:57:38 q+ 13:57:58 sean: everything we do should be consistent with rfc 2253 13:58:03 ack 13:58:07 ack klanz 13:58:25 klanz: +1 to sean 13:58:36 rfc 4514 obsoletes 2253 13:58:55 q+ 13:59:03 klanz: see if whitespace etc matter 13:59:26 -grw 13:59:29 +q 13:59:58 ... ok with warning 14:00:46 ack jcc 14:01:30 klanz: changing RFC is conformance changing ? 14:01:59 Need to evaluate whether our changes to the DN description, etc. affect XKMS. 14:03:13 ack Thomas 14:03:15 jcc: security considerations with DNAMES 14:03:57 tlr: what was mean originally, if what was meat, is there is case for change 14:04:07 ... capture in clear language what was meant originally 14:04:15 ... clarify whether normative langue 14:04:17 q+ 14:04:21 s/langue/language 14:04:25 ack esimon 14:04:59 section 7.2 of rf2253 (Use of distinguished names in security applications) warns about using the strings for identifying certificates. See http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0001.html 14:05:02 ack klanz 14:05:27 I think we need to get folk like Alex Deacon involved here 14:05:41 There are two sets of issues: what the specs say and what the applications do 14:07:12 zakim, drop me 14:07:12 Thomas is being disconnected 14:07:13 -Thomas 14:07:51 -PHB 14:07:59 PHB2 has left #xmlsec 14:08:06 -sean 14:08:08 Zakim, list participants 14:08:08 As of this point the attendees have been Frederick_Hirsch, klanz2, EdSimon, jcc, Thomas, Hal, sean, grw, RobMiller, PHB 14:08:10 -jcc 14:08:13 -RobMiller 14:08:14 -Hal 14:08:17 RRSAgent, make logs public 14:08:33 RRSAgent, generate minutes 14:08:33 I have made the request to generate http://www.w3.org/2007/06/05-xmlsec-minutes.html klanz2 14:09:24 zakim, who is here? 14:09:24 On the phone I see Frederick_Hirsch, klanz2, EdSimon 14:09:25 On IRC I see ptrimint, rmiller, jcc, tlr, esimon2, fjh, RRSAgent, Zakim, klanz2, trackbot-ng 14:10:41 -EdSimon 14:11:20 zakim, bye 14:11:20 leaving. As of this point the attendees were Frederick_Hirsch, klanz2, EdSimon, jcc, Thomas, Hal, sean, grw, RobMiller, PHB 14:11:20 Zakim has left #xmlsec 14:11:29 Zakim, bye 14:11:35 RRSAgent, bye 14:11:35 I see 9 open action items saved in http://www.w3.org/2007/06/05-xmlsec-actions.rdf : 14:11:35 ACTION: 40 to the Java SE implementation doesn't do any of the DNAME encoding rules; we just encode as RFC 2253 String [1] 14:11:35 recorded in http://www.w3.org/2007/06/05-xmlsec-irc#T13-13-25 14:11:35 ACTION: thomas to update CFP draft as suggested in http://lists.w3.org/Archives/Member/member-xmlsec-maintwg/2007Jun/0000.html [2] 14:11:35 recorded in http://www.w3.org/2007/06/05-xmlsec-irc#T13-17-02 14:11:35 ACTION: TLR to give information on hosting to PHB [3] 14:11:35 recorded in http://www.w3.org/2007/06/05-xmlsec-irc#T13-21-15 14:11:35 ACTION: PHB to confirm hosting by end of the week [4] 14:11:35 recorded in http://www.w3.org/2007/06/05-xmlsec-irc#T13-21-31 14:11:35 ACTION: tlr and fjh to update editors draft for next meeting [5] 14:11:35 recorded in http://www.w3.org/2007/06/05-xmlsec-irc#T13-31-26 14:11:35 ACTION: : jcc to make proposal to resolve issue on http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html [6] 14:11:35 recorded in http://www.w3.org/2007/06/05-xmlsec-irc#T13-40-08 14:11:35 ACTION: jcc to make proposal to resolve issue on http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html [7] 14:11:35 recorded in http://www.w3.org/2007/06/05-xmlsec-irc#T13-40-34 14:11:35 ACTION: cruellas to make proposal to resolve issue on http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html [8] 14:11:35 recorded in http://www.w3.org/2007/06/05-xmlsec-irc#T13-40-46 14:11:35 ACTION: konrad to illustrate proposed changes by example [9] 14:11:35 recorded in http://www.w3.org/2007/06/05-xmlsec-irc#T13-44-15