12:46:35 RRSAgent has joined #xmlsec 12:46:35 logging to http://www.w3.org/2007/06/19-xmlsec-irc 12:47:20 fjh has joined #xmlsec 12:47:47 zakim, this will be xmlsec 12:47:47 ok, fjh; I see T&S_XMLSEC()9:00AM scheduled to start in 13 minutes 12:47:54 zakim, what is the code? 12:47:54 the conference code is 965732 (tel:+1.617.761.6200 tel:+33.4.89.06.34.99 tel:+44.117.370.6152), fjh 12:48:30 Meeting: XML Security Specifications Maintenance WG Conference Call 12:48:44 Chair: Frederick Hirsch 12:48:57 ScribeNick:klanz2 12:49:09 RRSAgent, make log public 12:49:42 Agenda: http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0055.html 12:50:06 Regrets: Hal Lockhart 12:50:39 TOPIC: 1) Administrivia: scribe confirmation, next meeting 12:53:04 tlr has joined #xmlsec 12:54:51 sean has joined #xmlsec 12:55:16 T&S_XMLSEC()9:00AM has now started 12:55:22 +Frederick_Hirsch 12:55:27 zakim, who is here? 12:55:27 On the phone I see Frederick_Hirsch 12:55:28 On IRC I see sean, tlr, fjh, RRSAgent, Zakim, klanz2, trackbot-ng 12:56:36 +??P6 12:56:38 zakim, ? is klanz2 12:56:38 +klanz2; got it 12:56:43 Present: Frederick Hirsch, Konrad Lanz, Thomas Roessler, Sean Mullen 12:57:14 +sean 12:57:25 grw has joined #xmlsec 12:57:29 EdS has joined #xmlsec 12:57:39 Present: Frederick Hirsch, Konrad Lanz, Thomas Roessler, Sean Mullen, Greg Whitehead, Ed Simon 12:58:12 jcc has joined #xmlsec 12:58:32 Hello 12:58:45 Present: Frederick Hirsch, Konrad Lanz, Thomas Roessler, Sean Mullen, Greg Whitehead, Ed Simon, Juan Carlos Cruellas 12:59:19 + +1.613.726.aaaa 12:59:37 zakim, ? is EdS 12:59:37 sorry, klanz2, I do not recognize a party named '?' 12:59:52 zakim, +1.613.726.aaaa is EdS 12:59:52 +EdS; got it 12:59:53 +grw 13:00:38 TOPIC: 1a) Peter Lipp (Konrad Lanz will do if Peter not available) is scheduled to scribe. 13:00:39 zakim, call thomas-skype 13:00:39 ok, tlr; the call is being made 13:00:41 +Thomas 13:00:51 +RobMiller 13:01:02 chair: Konrad is the Scribe 13:01:24 TOPIC: 1b) Meeting planning 13:01:25 Present: Frederick Hirsch, Konrad Lanz, Thomas Roessler, Sean Mullen, Greg Whitehead, Ed Simon, Juan Carlos Cruellas, Rob Miller 13:01:44 fjh: Teleconference 3 July? 13:01:55 fjh: are there regrets 13:02:05 +[IPcaller] 13:02:11 Miller: regrets 13:02:12 zakim, IPcaller is jcc 13:02:12 +jcc; got it 13:02:19 Sean: regrets 13:02:34 fjh: prefer not to have the call ... 13:02:47 zakim, who is on the phone? 13:02:47 On the phone I see Frederick_Hirsch, klanz2, sean, EdS, grw, Thomas, RobMiller, jcc 13:03:25 greg whitehead: leave hp, will dropp of some groups 13:03:37 tlr: will there be a successor 13:03:52 greg whitehead: talk to tlr after the call 13:04:18 fjh: proposes to cancel 3rd of July call 13:04:23 seconded 13:04:31 RESOLUTION: 3rd of July call cancelled 13:04:49 TOPIC: 2) Review and approval of last meeting's minutes 13:04:52 minutes http://www.w3.org/2007/06/12-xmlsec-minutes 13:05:06 fjh: revised minutes, re attendence 13:05:19 RESOLUTION: Minutes accepted 13:05:32 TOPIC: 3) Action item review 13:05:46 ACTION-26: continued 13:05:55 ACTION-35: continued 13:06:04 ACTION-36: closed 13:06:16 Close, see http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0046.html 13:06:51 ACTION-37: sean will suggest some things 13:07:41 ACTION-38: closed with no Action ... 13:07:49 nothing to add to JCC analysis 13:07:50 eastlake has joined #xmlsec 13:08:11 Present: Frederick Hirsch, Konrad Lanz, Thomas Roessler, Sean Mullen, Greg Whitehead, Ed Simon, Juan Carlos Cruellas, Rob Miller, Donald Eastlake 13:08:29 Hi, Sorry but I have to be on another teleconference until 9:30 13:08:44 ACTION-48: closed, comment dropped due to some overseen text 13:08:46 http://www.w3.org/2007/xmlsec/Group/track/actions/39 13:09:13 s/39/48/ 13:09:34 http://www.w3.org/2007/xmlsec/Group/track/actions/48 13:10:34 jcc: provide link later in the call 13:10:37 +R_Salz 13:10:56 Present: Frederick Hirsch, Konrad Lanz, Thomas Roessler, Sean Mullen, Greg Whitehead, Ed Simon, Juan Carlos Cruellas, Rob Miller, Donald Eastlake, Rich Salz 13:11:27 http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0046.html 13:12:09 jcc: subject should be ACTION-48 13:12:29 tlr: will reopen action-36 13:12:40 jcc: no, action-36 is also closed 13:13:07 tlr: fised up links in tracker 13:13:15 s/fised/fixed/ 13:13:22 ACTION-48: closed 13:13:31 ACTION-49:closed 13:13:42 Done see http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0028.html 13:14:03 ACTION-50: open 13:14:13 ACTION-51:closed 13:14:23 Done, see http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0033.html 13:14:35 49 closed with http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0028.htm 13:15:01 TOPIC: 4) Workshop/CFP 13:15:15 Announcement on web: http://www.w3.org/2007/xmlsec/ws/ 13:15:21 fjh: approved by W3C, updated version availiable 13:15:31 cfp http://www.w3.org/2007/xmlsec/ws/cfp.html 13:15:38 fjh: request for position papers 13:15:55 tlr: page not yet public, will be public until tomorrow 13:16:15 tlr: start propaganda in one or two days 13:16:25 fjh: will there be different uri 13:16:36 tlr: access permissions will be changed 13:17:14 tlr: will send explicit message to the list to get propaganda started 13:17:38 TOPIC: 5) Decryption Transform to Last Call 13:17:54 fjh: proposed to publish 13:18:05 and also go to Last Call 13:18:35 RESOLUTION: WG agrees to bring Decryption Transform to publication in Last Call 13:18:45 s/in/and/ 13:18:54 tlr: short names need to be considered ... 13:19:13 tlr: current short name is ... 13:19:30 http://www.w3.org/TR/xmlenc-decrypt 13:19:36 xmlenc-decrypt11 13:20:06 fjh: should we change the title ... 13:20:17 document http://www.w3.org/2007/xmlsec/Drafts/xmlenc-decrypt.html 13:20:45 no need to change title, editors draft already updated 13:20:50 tlr: proposed xmlenc-decrypt11 as short name 13:21:15 RESOLUTION: to ask permission to use xmlenc-decrypt11 13:21:16 RESOLUTION: WG agrees to use xmlenc-decrypt11 as short name for Decryption Transform to publication in Last Call 13:21:46 s/RESOLUTION: to ask permission to use xmlenc-decrypt11// 13:21:54 tlr: it's actually "ask for permission", but that's ok. ;-) 13:21:57 TOPIC: 6) DSig-Usage note 13:22:59 tlr: is editor, take over from xml core ... 13:23:33 RESOLUTION: WG agrees to ask whether we ask to take over the DSig-Usage note from xml core 13:23:44 I agree. 13:23:48 +1 13:24:17 s/ WG agrees to ask whether we ask to take over the DSig-Usage note from xml core/WG to ask XML Core to hand over ownership of the dsig-usage note to this working group/ 13:24:53 ACTION: thomas to ask XML Core chairs for dsig-usage note 13:24:53 Created ACTION-52 - Ask XML Core chairs for dsig-usage note [on Thomas Roessler - due 2007-06-26]. 13:25:06 ACTION: thomas to work toward publication of xmlenc-decrypt11 as Last Call WD 13:25:06 Created ACTION-53 - Work toward publication of xmlenc-decrypt11 as Last Call WD [on Thomas Roessler - due 2007-06-26]. 13:25:06 TOPIC: 7) Interop testing participation and timing 13:25:38 fjh: questionnaire: C14N11 - 4 yes, timing - early Q3? 13:25:38 DSig Core - 4 yes, early Q3? 13:25:38 Decrypt Transform - 10 No's. No interop? 13:26:23 fjh: is C14N11 possibile in Q3 ... 13:26:25 late summer would be better, maybe August 13:27:05 klanz2: started work on implementation, test cases 13:27:12 ... maybe need repository for test cases 13:27:17 late August mid September... 13:27:32 klanz2: test cases rather early, cvs repository would be helpful 13:28:10 fjh: feasible to do interop at the same time workshop 13:29:21 ACTION: phil to check whether we can add time to Sept F2F for interop 13:29:21 Sorry, couldn't find user - phil 13:29:36 tlr: do we need to change cfp ? 13:30:20 .. why would this impact the cfp 13:30:44 tlr: proposed to phrase it as part of the workshop 13:31:06 greg whitehead: I thought we would make this after the workshop 13:31:34 fjh: pull as much time out of the workshop as possible, thout it would be after 13:32:04 s/pull as much time out of the workshop as possible, thout it would be after/keep a full workshop, add time for WG interop after, in addition to workshop/ 13:32:08 check with phb whether we could continue after the workshop at versign with interop 13:32:09 not lose workshop time 13:32:55 tlr: one more thing end up doing, put pointers on the home page ... 13:33:29 fjh: we propose additional half day ... 13:33:50 tlr: will have to go to W3C manegerial level ... 13:33:53 ACTION: thomas to check with phill whether we can add time to Sept F2F for interop 13:34:13 ACTION: thomas to ask whether we can add time to workshop 13:34:13 Created ACTION-54 - Ask whether we can add time to workshop [on Thomas Roessler - due 2007-06-26]. 13:34:19 change "add time" to "add an additional 1/2 day after workshop"? 13:34:33 ACTION: thomas to create questionnaire to check availability on 27 September 13:34:33 Created ACTION-55 - Create questionnaire to check availability on 27 September [on Thomas Roessler - due 2007-06-26]. 13:35:29 change 1/2 day to 1 day 13:35:33 tlr: puts up questionnaire 13:35:38 everyone please respond to questionnaire 13:36:15 hello? 13:36:25 TOPIC: 8) XML Signature Revision - Errata 01 13:36:33 zakim, drop thomas 13:36:33 Thomas is being disconnected 13:36:34 -Thomas 13:36:36 zakim, call thomas-skype 13:36:36 ok, tlr; the call is being made 13:36:38 +Thomas 13:36:42 http://www.w3.org/2007/xmlsec/Drafts/xmldsig-core/#sec-X509Data 13:36:47 apologies 13:37:09 fjh: red line corrects the first two bullett items 13:38:04 "To encode a distinguished name (X509IssuerSerial,X509SubjectName, and KeyName if approriate), the encoding rules in section 2 of RFC 2253 [LDAP-DN] SHOULD be applied, except that the string encoding rules in section 2.4 of RFC 2253 [LDAP-DN] should be augmented as 13:38:35 http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0051.html 13:39:20 +deastl 13:39:38 q+ 13:40:33 ack tlr 13:40:59 EdS: does it make sense to make rules at all as no implementations 13:41:07 tlr: two set of questions 13:41:34 tlr: current text RFCs 2253 4514 put together boils down to ... 13:42:16 http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2007Jun/0033.html 13:42:28 comply with grammar and rfc rule + addtl constraints in dsig core 13:42:48 s/comply/tlr: comply/ 13:42:55 tlr: coply with grammar 13:44:01 tlr: are the additional rules useful or not ... 13:44:15 tlr: proposal as in the editors draft 13:44:34 q+ 13:44:38 I can only catch about half of what Thomas is saying due to audio issues. 13:44:49 http://tools.ietf.org/rfc/rfc4515.txt 13:45:19 proposal: (1) changes as outlined in message; (2) reference 4515 13:45:23 zakim, drop thomas 13:45:23 Thomas is being disconnected 13:45:25 -Thomas 13:45:39 zakim, call thomas-skype 13:45:39 ok, tlr; the call is being made 13:45:40 +Thomas 13:45:45 s/4515/4514 13:45:49 fjh: tlr says we cannot rip it out at all 13:46:08 since already in REC 13:47:09 http://lists.w3.org/Archives/Public/w3c-ietf-xmldsig/2001AprJun/0118.html 13:47:09 > 1. The schema will not prevent people from having leading or trailing 13:47:09 > whitespace in the content of KeyName (and it shouldn't!). The spec will 13:47:09 > just say that any leading and trailing whitespace MUST be trimmed to obtain 13:47:09 > the actual KeyName. 13:47:10 > 13:47:12 q+ 13:47:12 > 2. The code will look something like this: 13:47:14 > 13:47:16 > Node nodeKeyName = XPathAPI.selectNode(doc, "//KeyName/text()"); // get 13:47:18 > the text content of 13:47:20 > String strNodeKeyName = nodeKeyName.nodeValue(); 13:47:22 > String strKeyName = strNodeKeyName.trim(); 13:47:23 ack klanz 13:47:24 > KeyResolver.resolveWithKeyName(strKeyName); 13:47:26 > 13:48:03 Tom Gindin 13:48:11 Merlin Hughs 13:48:30 q? 13:48:38 ack tlr 13:49:33 is konrad proposal to remove "*Escape any trailing space characters (Unicode \x20) by replacing them with "\20", instead of using the escape sequence "\ ". 13:49:37 ? 13:49:43 Why would someone really care to type a DNAME as follows 13:49:43 CN=foo \20 13:49:43 13:49:43 instead of 13:49:43 CN=foo \ 13:51:02 tlr: reason for \20 is to protect significant whitespace in XML processing 13:51:22 rich: xml layer 13:51:58 rich: is not necessary 13:52:19 Rich: normalizing space was a use case for this that is not being used 13:52:47 q+ 13:52:53 ack tlr 13:53:32 tlr: we should record unecessary feature 13:53:53 q+ 13:54:02 tlr: deal in futire iterations 13:54:09 s/in/with in 13:54:21 s/iterations/iterations since not simply errata 13:55:00 http://www.w3.org/2007/xmlsec/Drafts/xmldsig-core/#sec-X509Data 13:56:07 q+ fjh where are we at? 13:56:40 fjh: remove in future versions 13:56:51 I think the point of this section was robustness -- clearly indicating indicating whether trailing white space that happens to be in a KeyName is significant or not. Some lazy apps may include irrelevant trailing white space that should NOT be treated as relevant by receiving applications. 13:58:29 question - is removal of whitespace escaping a conformance issue if this material is lowercase "should" 13:58:49 klanz2: corner case nobody uses, why not remove? 13:59:50 I shouldn't have said in my statement above "the point" but rather "one of the points". 14:00:34 Let's continue to discuss on the list. 14:01:01 rich: in favor of removing \20 processing rule for DNames 14:01:20 klanz2: no need for unicode bullets, normal XML processing 14:01:36 edS: agrees with klanz2 on no need for unicode or std xml processing points 14:02:02 tlr: distinguish creation and receiver processing 14:02:21 ... removing might impact receivers that rely on it 14:02:46 ... not impact conformance requirement, concern 14:03:40 http://lists.w3.org/Archives/Public/w3c-ietf-xmldsig/2001AprJun/0118.html: The spec will 14:03:41 just say that any leading and trailing whitespace MUST be trimmed to obtain 14:03:41 the actual KeyName. 14:04:02 but that never seems to have made it into the spec 14:05:09 grw: agrees to remove but not in an errata release, should do in next version 14:05:17 ... this is more of an enhancement 14:05:35 -R_Salz 14:06:02 http://lists.w3.org/Archives/Public/w3c-ietf-xmldsig/2001AprJun/0118.html 14:07:03 http://lists.w3.org/Archives/Public/w3c-ietf-xmldsig/2002JanMar/0229.html 14:08:08 -grw 14:08:33 -RobMiller 14:08:35 -jcc 14:08:38 -sean 14:08:40 -deastl 14:08:46 -EdS 14:08:49 -Thomas 14:09:59 Zakim, list participants 14:09:59 As of this point the attendees have been Frederick_Hirsch, klanz2, sean, EdS, grw, Thomas, RobMiller, jcc, R_Salz, deastl 14:10:11 RRSAgent, generate minutes 14:10:11 I have made the request to generate http://www.w3.org/2007/06/19-xmlsec-minutes.html fjh 14:10:45 Zakim, bye 14:10:45 leaving. As of this point the attendees were Frederick_Hirsch, klanz2, sean, EdS, grw, Thomas, RobMiller, jcc, R_Salz, deastl 14:10:45 Zakim has left #xmlsec 14:10:56 RRSAgent, bye 14:10:56 I see 6 open action items saved in http://www.w3.org/2007/06/19-xmlsec-actions.rdf : 14:10:56 ACTION: thomas to ask XML Core chairs for dsig-usage note [1] 14:10:56 recorded in http://www.w3.org/2007/06/19-xmlsec-irc#T13-24-53 14:10:56 ACTION: thomas to work toward publication of xmlenc-decrypt11 as Last Call WD [2] 14:10:56 recorded in http://www.w3.org/2007/06/19-xmlsec-irc#T13-25-06 14:10:56 ACTION: phil to check whether we can add time to Sept F2F for interop [3] 14:10:56 recorded in http://www.w3.org/2007/06/19-xmlsec-irc#T13-29-21 14:10:56 ACTION: thomas to check with phill whether we can add time to Sept F2F for interop [4] 14:10:56 recorded in http://www.w3.org/2007/06/19-xmlsec-irc#T13-33-53 14:10:56 ACTION: thomas to ask whether we can add time to workshop [5] 14:10:56 recorded in http://www.w3.org/2007/06/19-xmlsec-irc#T13-34-13 14:10:56 ACTION: thomas to create questionnaire to check availability on 27 September [6] 14:10:56 recorded in http://www.w3.org/2007/06/19-xmlsec-irc#T13-34-33