14:54:28 RRSAgent has joined #webid 14:54:28 logging to http://www.w3.org/2011/11/21-webid-irc 14:54:29 RRSAgent, make logs world 14:54:30 Zakim has joined #webid 14:54:31 Zakim, this will be WEBID 14:54:32 ok, trackbot; I see INC_WEBID(WEBID)10:00AM scheduled to start in 6 minutes 14:54:32 Meeting: WebID Incubator Group Teleconference 14:54:32 Date: 21 November 2011 14:54:38 RRSAgent, draft minutes 14:54:38 I have made the request to generate http://www.w3.org/2011/11/21-webid-minutes.html bblfish 14:54:47 RRSAgent, make logs public 14:58:47 domel has joined #webid 14:59:50 INC_WEBID(WEBID)10:00AM has now started 14:59:57 + +1.510.931.aaaa 15:00:29 bergi_ has joined #webid 15:01:23 +scor 15:01:31 - +1.510.931.aaaa 15:01:42 Wikier has joined #webid 15:01:49 hi 15:02:16 +[IPcaller] 15:02:26 + +49.874.aabb 15:02:39 scor has joined #webid 15:02:45 Zakim, I am [IPcaller] 15:02:45 ok, domel, I now associate you with [IPcaller] 15:02:56 zakim, who is on the phone? 15:02:56 On the phone I see scor, [IPcaller], +49.874.aabb 15:03:02 Zakim, I am +49.874.aabb 15:03:02 +bergi_; got it 15:03:03 bblfish_ has joined #webid 15:03:08 ah hi 15:03:18 zakim, who is on the phone? 15:03:18 On the phone I see scor, [IPcaller], bergi_ 15:03:26 -[IPcaller] 15:03:28 mhh 15:03:33 perhaps I got disconnected 15:04:42 + +1.510.931.aacc 15:05:01 zakim, who is on the phone? 15:05:01 On the phone I see scor, bergi_, +1.510.931.aacc 15:05:13 Zakim I am aacc 15:05:25 zakim, aacc is bblfish 15:05:25 +bblfish; got it 15:05:37 http://bblfish.net/tmp/2011/11/21/index-respec.html 15:05:37 +[IPcaller] 15:05:42 zakim, who is on the phone? 15:05:42 On the phone I see scor, bergi_, bblfish, [IPcaller] 15:05:56 Zakim, I am [IPcaller] 15:05:56 ok, domel, I now associate you with [IPcaller] 15:06:07 zakim, who is on the phone? 15:06:07 On the phone I see scor, bergi_, bblfish, [IPcaller] 15:06:44 scribe: scor 15:07:19 bblfish: has been working on a new version of the spec 15:07:20 http://bblfish.net/tmp/2011/11/21/index-respec.html#authentication-sequence 15:07:35 in the bblfish branch that moment 15:07:36 it' is in the bblfish branch of mercurial 15:08:08 http://www.w3.org/2005/Incubator/webid/spec/#authentication-sequence 15:09:34 feedback ? 15:10:01 this new version incorporates a lot of Peter's Williams feedback 15:11:12 bergi_: the WebID verification step should be in the yellow box 15:16:48 scor has joined #webid 15:17:12 bblfish: introduced the concept of "guard" which decides whether a WebID authentication is required 15:17:22 Wikier has joined #webid 15:18:28 +[CTIC] 15:18:50 Zacim, I am +[CTIC] 15:18:53 Zakim, I am +[CTIC] 15:18:53 sorry, Wikier, I do not see a party named '+[CTIC]' 15:19:01 Zakim, I am CTIC 15:19:01 ok, Wikier, I now associate you with [CTIC] 15:19:19 zakim, who is on the phone? 15:19:19 On the phone I see scor, bergi_, bblfish, [IPcaller], [CTIC] 15:19:20 zakim, who is on the phone? 15:19:21 On the phone I see scor, bergi_, bblfish, [IPcaller], [CTIC] 15:19:25 http://bblfish.net/tmp/2011/11/21/index-respec.html#authentication-sequence 15:23:13 ACTION bergi_ to explain on the wiki how to request a client certificate after the TLS session has been started on Apache 15:23:13 Sorry, couldn't find user - bergi_ 15:23:20 ACTION bergi to explain on the wiki how to request a client certificate after the TLS session has been started on Apache 15:23:20 Sorry, couldn't find user - bergi 15:23:26 ACTION bergie to explain on the wiki how to request a client certificate after the TLS session has been started on Apache 15:23:26 Sorry, couldn't find user - bergie 15:23:50 bergi_: what's you W3 username? 15:23:56 ACTION tbergwin to explain on the wiki how to request a client certificate after the TLS session has been started on Apache 15:23:56 Created ACTION-49 - Explain on the wiki how to request a client certificate after the TLS session has been started on Apache [on Thomas Bergwinkl - due 2011-11-28]. 15:26:31 mischat_ has joined #webid 15:27:57 bblfish: kept the possibility to have multiple SAN in the processing steps 15:28:47 bergi_: having multiple WebIDs can improve security, for example by verifying all WebIDs for a "secure" authn mode 15:28:58 bergi_: because a hacker would need to hack all servers at the same time 15:30:05 bergi_: "high availability" mode would only require one WebID to be verifed 15:36:52 melvster has joined #webid 15:38:25 bblfish: there is a lot more research to be done on WebID related topics, but we should focus on the spec and get WebID going, more implementations etc 15:38:40 to show people the potential 15:39:04 bblfish: if we can move to a WG, we hope to get more security experts on board 15:39:35 we were discussing this http://www.w3.org/2005/Incubator/webid/track/issues/62 15:41:07 http://bblfish.net/tmp/2011/11/21/index-respec.html#verifying-the-webid-is-identified-by-that-public-key 15:41:49 danbri has joined #webid 15:42:16 bblfish: I think we need use xsd because it is standard and used in the wild. we should use that instead of our custom cert:hex 15:43:08 BTW, "65537"^^cert:int -> 65537 || "65537"^^xsd:int 15:49:23 bblfish: xsd allows to use SPARQL ASK queries, even though it does not look as nice 15:49:40 use XSD:hexBinary for modulus 15:49:50 +1 15:49:54 +1 15:49:55 +1 15:50:16 PROPOSAL: use XSD:hexBinary for modulus 15:50:18 the whole point of that would be to make the ASK query in the spec possible 15:50:19 +1 15:51:06 I'll put that to the list 15:51:22 RESOLVED: use XSD:hexBinary for modulus 15:52:34 PROPOSAL: merge rsa into cert ontology 15:52:36 +1 15:52:37 +1 15:52:38 +1 15:52:39 +1 15:52:44 +1 15:54:12 hi scor 15:54:52 Wikier thinks diagram is much better :-) 15:56:26 I propose remove DSA key issue and other dependences from spec 15:58:45 RFC 5746 15:58:52 http://download.oracle.com/javase/7/docs/technotes/guides/security/jsse/JSSERefGuide.html#descPhase2 16:00:01 PROPOSAL: ask mailing list to vote on moving changes to main branch 16:00:04 ACTION scor to fix respec.js errors in the spec 16:00:04 Created ACTION-50 - Fix respec.js errors in the spec [on Stéphane Corlosquet - due 2011-11-28]. 16:00:37 -scor 16:00:50 bblfish: will you take care of publishing the minutes? 16:01:13 bye 16:01:15 thanks all 16:01:18 bye 16:01:19 -bblfish 16:01:21 -[CTIC] 16:01:22 -[IPcaller] 16:01:24 -bergi_ 16:01:25 INC_WEBID(WEBID)10:00AM has ended 16:01:26 Attendees were +1.510.931.aaaa, scor, [IPcaller], +49.874.aabb, bergi_, +1.510.931.aacc, bblfish, [CTIC] 16:01:38 bergi_ has left #webid 16:01:41 RRSAgent, make logs public 16:01:50 trackbot, end meeting 16:01:50 Zakim, list attendees 16:01:50 sorry, trackbot, I don't know what conference this is 16:01:51 RRSAgent, please draft minutes 16:01:51 I have made the request to generate http://www.w3.org/2011/11/21-webid-minutes.html trackbot 16:01:52 RRSAgent, bye 16:01:52 I see no action items