See also: IRC log
<tlr> Meeting: XML Sec WG weekly
<tlr> Date: 5 June 2007
HAL: not in office next meeting
<tlr> Agenda: http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0007.html
<tlr> Chair: fjh
<fjh> minutes from last meeting http://www.w3.org/2007/05/29-xmlsec-minutes
RESOLUTION: minutes approved
<tlr> ACTION-26 continues
tlr: no progress
... couple of issues need resolution and interaction with the xml
coordination group
<scribe> Closed ACTION-28
http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007May/0047.htmlklanz2: no conformance affecting changes http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0014.html
http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007May/att-0044/Apendix.html
that's the related mail http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007May/0044.html
fjh: still open and on rsalz
jcc: action should be closed
<jcc> message from JC for action 36: http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html
sean: ongoing
??? Close ??? ACTION-38
@@@ No input on review: Did I miss some email / comment to close this Action ??? @@@CLOSE ACTION-39 Done, see http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0002.html
CLOSE ACTION-40 http://lists.w3.org/Archives/Member/member-xmlsec-maintwg/2007Jun/0002.html
<Sean> ACTION: 41 to the Java SE implementation doesn't do any of the DNAME encoding rules; we just encode as RFC 2253 String [recorded in http://www.w3.org/2007/06/05-xmlsec-minutes.html#action01]
Close ACTION-41
Close ACTION-42
fjh: submission for approval next wednesday
<fjh> http://lists.w3.org/Archives/Member/member-xmlsec-maintwg/2007Jun/0000.html
<tlr> fjh, chair hat off: sent message to list with some tweaks
fhj: add an item to capture other standards experience
<tlr> +1 to the proposed changes
<fjh> Experience and consequences of building other specifications or standards with the XML Signature and XML Encryption suites of specifications as a basis
<fjh> Insight into the interaction of the XML Security specifications with the evolving XML environment
fhj: other changes are editorial
RESOLUTION: Changes by fjh are accepted
<tlr> ACTION: thomas to update CFP draft as suggested in http://lists.w3.org/Archives/Member/member-xmlsec-maintwg/2007Jun/0000.html [recorded in http://www.w3.org/2007/06/05-xmlsec-minutes.html#action02]
<trackbot-ng> Created ACTION-44 - Update CFP draft as suggested in http://lists.w3.org/Archives/Member/member-xmlsec-maintwg/2007Jun/0000.html [on Thomas Roessler - due 2007-06-12].
<ptrimint> hi, I am Panos Trimintzios from ENISA .. just logged in (apologies for delay)
hal: largest room for people seated at tables for 30 people
<tlr> phb: can contact VERISIGN and see if there's a venue there
<tlr> ... have rooms that are large enough ...
phb: makes a case at verisign to get room
<tlr> http://www.w3.org/2007/xmlsec/ws/cfp
fjh: can we get this out before next tuesday
tlr: give necessary information to phil
phb: will be able to tell in a couple of days
<fjh> ACTION: TLR to give information on hosting to PHB [recorded in http://www.w3.org/2007/06/05-xmlsec-minutes.html#action03]
<trackbot-ng> Created ACTION-45 - Give information on hosting to PHB [on Thomas Roessler - due 2007-06-12].
<tlr> ACTION-45 due right away
<fjh> ACTION: PHB to confirm hosting by end of the week [recorded in http://www.w3.org/2007/06/05-xmlsec-minutes.html#action04]
<trackbot-ng> Created ACTION-46 - Confirm hosting by end of the week [on Phillip Hallam-Baker - due 2007-06-12].
fjh: is it likely that verisign will host
tlr: there can't be NDAs
fjh: workshop nine to five
... considering changing the hosting from bea to verisign
fjh: willing to chair
tlr: there is critical mass to do program comittee work
fjh: on regular call or extra calls
tlr: if possible on regular calls
... split the burden among the group into sessions
fjh: different workgroup members should participate in recording session's outcome to generate final reports
NOTE: fjh offers to chair
fjh: do not neded to wairt for response to ACTION-40
tlr: plan is to publish current editor's draft
<tlr> Pending changes: (1) namespaces; (2) change reference to C14N 1.1 to be more precise
<tlr> Group can either trust editors to do this and just move ahead to do Last Call FPWD, or look at updated draft @ next meeting
<tlr> I'm fine either way.
<fjh> ACTION: tlr and fjh to update editors draft for next meeting [recorded in http://www.w3.org/2007/06/05-xmlsec-minutes.html#action05]
<trackbot-ng> Created ACTION-47 - And fjh to update editors draft for next meeting [on Thomas Roessler - due 2007-06-12].
<fjh> http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007May/0044.html
<fjh> klanz2: had action to determine if conformance changes between Dec and later version, none found
<fjh> ... wrote implementation to test, found a separate issue with algorithm in appendix
<fjh> ... proposed changed version , also added set of test cases
<fjh> ... primary issue .. processing
fjh: rsalz not on the call
<jcc> http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html
<fjh> klanz2: xpath filters not defined for canonicalization as such
jcc: example in section 3.8 does not relate XPATH-Filter
fjh: put proposal on the list
Create ACTION on jcc example in section 3.8 does not relate XPATH-Filter
<fjh> ACTION:: jcc to make proposal to resolve issue on http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html [recorded in http://www.w3.org/2007/06/05-xmlsec-minutes.html#action06]
<tlr> ACTION: jcc to make proposal to resolve issue on http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html [recorded in http://www.w3.org/2007/06/05-xmlsec-minutes.html#action07]
<trackbot-ng> Sorry, couldn't find user - jcc
<tlr> ACTION: cruellas to make proposal to resolve issue on http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html [recorded in http://www.w3.org/2007/06/05-xmlsec-minutes.html#action08]
<trackbot-ng> Created ACTION-48 - Make proposal to resolve issue on http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0010.html [on Juan Carlos Cruellas - due 2007-06-12].
<fjh> jcc: asks for link to examples related to appendix a
http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007May/att-0044/Apendix.html
that's the related mail http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007May/0044.html
<fjh> sean: would help if konrad has examples showing output before changes he has made, and how different or change needed
chat is okay
<tlr> ACTION: konrad to illustrate proposed changes by example [recorded in http://www.w3.org/2007/06/05-xmlsec-minutes.html#action09]
<trackbot-ng> Created ACTION-49 - Illustrate proposed changes by example [on Konrad Lanz - due 2007-06-12].
<fjh> esimon2: +1 to sean
ed: +1 to sean
"no/.." -> "/" before
"no/.." -> "" now
<fjh> http://www.w3.org/TR/DSig-usage/
tlr: we will have to use a different uri in the
future
... given the input the uri will change
... how will the xml core wg react?
<fjh> klanz2: some changes to c14n11 needed, conformance changing, during C14N11 CR
<fjh> http://www.w3.org/2001/10/xmldsig-errata#E01
sean: sun only does RFC 2253 and none of the special rules in XMLDSIG
<fjh> sean: key issue is whether rules are optional
ed: doesn't think the DNAME encoding rules are optional
<fjh> klanz2: was optional in text, lowercase should, test cases indicated this
<fjh> sean: need to know what implementations are doing
<fjh> klanz2: give warning regarding unusual DNames in certs, not common
ed: proposed some changes
<esimon2> http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007May/0050.html
sean: everything we do should be consistent with rfc 2253
<fjh> ack
<fjh> klanz: +1 to sean
<jcc> rfc 4514 obsoletes 2253
<fjh> klanz: see if whitespace etc matter
<esimon2> +q
<fjh> ... ok with warning
<fjh> klanz: changing RFC is conformance changing ?
<esimon2> Need to evaluate whether our changes to the DN description, etc. affect XKMS.
jcc: security considerations with DNAMES
<fjh> tlr: what was mean originally, if what was meat, is there is case for change
<fjh> ... capture in clear language what was meant originally
<fjh> ... clarify whether normative language
<jcc> section 7.2 of rf2253 (Use of distinguished names in security applications) warns about using the strings for identifying certificates. See http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0001.html
<PHB2> I think we need to get folk like Alex Deacon involved here
<PHB2> There are two sets of issues: what the specs say and what the applications do
This is scribe.perl Revision: 1.128 of Date: 2007/02/23 21:38:13 Check for newer version at http://dev.w3.org/cvsweb/~checkout~/2002/scribe/ Guessing input format: RRSAgent_Text_Format (score 1.00) Succeeded: s/clodsed// FAILED: s/clodsed/closed/ Succeeded: s/Action 40/Action 41/ FAILED: s/Action 40/Action 41/ Succeeded: s/fhj/fjh/ Succeeded: s/fhj/fjh/ Succeeded: s/fhj/fjh/ Succeeded: s/langue/language/ Found Scribe: Konrad Lanz Found ScribeNick: klanz2 Default Present: Frederick_Hirsch, klanz2, EdSimon, jcc, Thomas, Hal, sean, grw, RobMiller, PHB Present: Frederick_Hirsch klanz2 EdSimon jcc Thomas Hal sean grw RobMiller PHB Agenda: http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0007.html Found Date: 5 Jun 2007 Guessing minutes URL: http://www.w3.org/2007/06/05-xmlsec-minutes.html WARNING: No person found for ACTION item: : jcc to make proposal to resolve issue on http://lists.w3.org/archives/public/public-xmlsec-maintwg/2007jun/0010.html [recorded in http://www.w3.org/2007/06/05-xmlsec-minutes.html#action06] People with action items: 41 cruellas fjh jcc konrad phb thomas tlr[End of scribe.perl diagnostic output]