19:56:43 RRSAgent has joined #crypto 19:56:43 logging to http://www.w3.org/2013/07/08-crypto-irc 19:56:45 RRSAgent, make logs public 19:56:47 Zakim, this will be SEC_WebCryp 19:56:47 ok, trackbot; I see SEC_WebCryp()4:00PM scheduled to start in 4 minutes 19:56:48 Meeting: Web Cryptography Working Group Teleconference 19:56:48 Date: 08 July 2013 19:57:28 tantek has joined #crypto 19:58:19 SEC_WebCryp()4:00PM has now started 19:58:21 +[IPcaller] 19:58:25 jimsch has joined #crypto 19:59:00 + +1.512.257.aaaa 19:59:01 hhalpin has joined #crypto 19:59:02 markw has joined #crypto 19:59:03 - +1.512.257.aaaa 19:59:03 + +1.512.257.aaaa 19:59:24 virginie has joined #crypto 19:59:31 +[IPcaller.a] 19:59:32 agenda ? 19:59:38 + +1.408.540.aabb 19:59:50 Zakim, aabb is Netflix 19:59:50 +Netflix; got it 19:59:54 MichaelH has joined #CRYPTO 19:59:56 Zakim, Netflix has markw 19:59:56 +markw; got it 20:00:12 tantek_ has joined #crypto 20:00:12 agenda+ welcome 20:00:32 agenda+ Web Crypto API (code name low level API) 20:00:37 +Wendy 20:00:52 agenda+ Web Crypto Key Discovery (next step) 20:01:02 chair: Virginie 20:01:04 agenda+ Web Crypto use cases 20:01:18 zakim, code? 20:01:18 the conference code is 27978 (tel:+1.617.761.6200 sip:zakim@voip.w3.org), nvdbleek 20:01:19 wseltzer has changed the topic to: Call today, July 8 20:01:21 + +1.650.214.aacc 20:01:22 agenda+ group life (summer activities and priorities) 20:01:33 vgb has joined #crypto 20:01:53 +[Microsoft] 20:02:03 zakim, [microsoft] is me 20:02:03 +vgb; got it 20:02:08 + +1.512.257.aadd 20:02:24 zakim, aadd is me 20:02:24 +virginie; got it 20:02:26 + +1.857.928.aaee 20:02:26 rsleevi has joined #crypto 20:02:34 zakim, who is here? 20:02:34 On the phone I see [IPcaller], +1.512.257.aaaa, [IPcaller.a], Netflix, Wendy, +1.650.214.aacc, vgb, virginie, +1.857.928.aaee 20:02:36 Netflix has markw 20:02:36 On IRC I see rsleevi, vgb, tantek_, MichaelH, virginie, markw, hhalpin, jimsch, tantek, RRSAgent, Zakim, jyates, sangrae, nvdbleek, ddahl, eroman, timeless, slightlyoff, trackbot, 20:02:36 ... wseltzer 20:02:45 zakim, who is on the call 20:02:45 I don't understand 'who is on the call', virginie 20:02:59 zakim, aaaa is me 20:02:59 +MichaelH; got it 20:03:03 I think [IPcaller.a] is me 20:03:06 zakim, who is on the call ? 20:03:06 On the phone I see [IPcaller], MichaelH, [IPcaller.a], Netflix, Wendy, Google, vgb, virginie, +1.857.928.aaee 20:03:09 Netflix has markw 20:03:09 Google has rsleevi 20:03:14 zakim, IPcaller.a is probably sangrae 20:03:14 +sangrae?; got it 20:03:20 zakim, who is here? 20:03:21 On the phone I see [IPcaller], MichaelH, sangrae?, Netflix, Wendy, Google, vgb, virginie, +1.857.928.aaee 20:03:22 Netflix has markw 20:03:22 Google has rsleevi 20:03:22 On IRC I see rsleevi, vgb, tantek_, MichaelH, virginie, markw, hhalpin, jimsch, tantek, RRSAgent, Zakim, jyates, sangrae, nvdbleek, ddahl, eroman, timeless, slightlyoff, trackbot, 20:03:22 ... wseltzer 20:03:24 Zakim, aaee is jyates 20:03:24 +jyates; got it 20:03:30 zakim, who is on the call ? 20:03:30 On the phone I see [IPcaller], MichaelH, sangrae?, Netflix, Wendy, Google, vgb, virginie, jyates 20:03:32 Netflix has markw 20:03:32 Google has rsleevi 20:03:36 + +1.512.257.aaff 20:03:51 zakim, aaff is karen 20:03:51 +karen; got it 20:03:53 zakim, IPcaller is jimsch 20:03:53 +jimsch; got it 20:03:58 karen has joined #crypto 20:04:01 +[Microsoft] 20:04:28 israelh has joined #Crypto 20:04:37 agenda? 20:04:41 zakim, Microsoft has israelh 20:04:42 israelh was already listed in [Microsoft], wseltzer 20:05:11 scribenick: wseltzer 20:05:30 Topic: Welcome 20:06:23 virginie: prioritization. look with vgb at life-cycle 20:06:38 + +31.61.877.aagg 20:06:38 ... ask for review of bugs 20:06:51 zakim, aagg is nvdbleek 20:06:51 +nvdbleek; got it 20:06:55 zakim, I am +31 20:06:55 sorry, nvdbleek, I do not see a party named '+31' 20:07:08 virginie: for next call, wrap/unwrap discussion 20:07:11 mitchz has joined #crypto 20:07:21 zakim, I am +31.61.877.aagg 20:07:21 sorry, nvdbleek, I do not see a party named '+31.61.877.aagg' 20:07:27 ... future of 2 other specs, key discovery and use cases 20:07:36 zakim, I am 31.61.877.aagg 20:07:36 sorry, nvdbleek, I do not see a party named '31.61.877.aagg' 20:07:44 zakim, who is here? 20:07:44 On the phone I see jimsch, MichaelH, sangrae?, Netflix, Wendy, Google, vgb, virginie, jyates, karen, [Microsoft], nvdbleek 20:07:47 [Microsoft] has israelh 20:07:47 Netflix has markw 20:07:47 Google has rsleevi 20:07:47 On IRC I see mitchz, israelh, karen, rsleevi, vgb, tantek, MichaelH, virginie, markw, hhalpin, jimsch, RRSAgent, Zakim, jyates, sangrae, nvdbleek, ddahl, eroman, timeless, 20:07:48 ... slightlyoff, trackbot, wseltzer 20:07:54 q? 20:07:57 @nvdbleek use aagg 20:08:17 Zakim, Netflix has markw, mitchz 20:08:17 markw was already listed in Netflix, markw 20:08:18 +mitchz; got it 20:08:30 virginie: approval of minutes 20:08:35 arunranga has joined #crypto 20:08:44 [agenda: http://lists.w3.org/Archives/Public/public-webcrypto/2013Jul/0007.html ] 20:08:45 http://www.w3.org/2013/06/03-crypto-minutes.html and http://www.w3.org/2013/06/17-crypto-minutes.html and http://www.w3.org/2013/06/24-crypto-minutes.html 20:09:07 virginie: any objection to these minutes (3, 17, and 24 June)? 20:09:18 ... no objection 20:09:24 zakim, take up agendum 2 20:09:24 agendum 2. "Web Crypto API (code name low level API)" taken up [from virginie] 20:09:51 vgb: sent some write-up on key agreement proposal 20:10:08 ... any comments? 20:10:13 ACTION-84? 20:10:13 ACTION-84 -- Richard Barnes to vgb and jimsch to discuss key generation/derivation/agreement -- due 2013-05-21 -- OPEN 20:10:13 http://www.w3.org/2012/webcrypto/track/actions/84 20:10:37 [ http://lists.w3.org/Archives/Public/public-webcrypto/2013Jun/0001.html ] 20:10:48 +ddahl 20:10:52 vgb: email had edits to the then-current draft 20:10:58 q+ 20:10:58 virginie: any questions? 20:11:02 ack next 20:11:11 + +1.505.665.aahh 20:11:13 rsleevi: Next step is to integrate into the draft 20:11:33 ... Updating the key agreement and key derivation points will happen for the next update 20:13:02 zakim, aahh is Ben_Santos 20:13:02 +Ben_Santos; got it 20:14:16 http://lists.w3.org/Archives/Public/public-webcrypto/2013Jul/0002.html 20:14:29 -virginie 20:14:39 rsleevi: that's the current status 20:14:53 ... a colleague working on implementation found a number of spec bugs 20:15:07 ... Encourage all implementers to file bugs 20:15:13 ... thanks to Jim for filing issues 20:15:31 ... Please file bugs where you find typos, spec ambiguity, errors 20:15:50 ... we'll only need to raise them on the call if complex or controversial 20:15:52 + +33.4.42.36.aaii 20:16:12 Zakim, aaii is me 20:16:12 +virginie; got it 20:16:22 ... Working on adding more normative text. particularly on import-key, which has been underspecified 20:16:37 ... algorithm definitions. expect to see more normative references 20:17:02 ... Requires careful attention to detail. Look through and report. 20:17:13 q+ 20:17:54 ack next 20:18:26 israelh: When do we expect to resolve wrap/unwrap, import/export? 20:18:50 ... from an implementation perspective, how much of a deadline can we expect? 20:19:04 virginie: ryan? 20:19:08 rsleevi: It 20:19:18 s/It/It's up to the chair/ 20:19:29 virginie: Would like to have decisions made during the summer. 20:19:57 ... ideally, wrap/unwrap would be decided on the next call, but I understand Mark won't be able to make it 20:20:07 ... so perhaps the next four weeks. 20:20:14 q+ 20:20:22 ... On import/export, I've seen less controversy; also next 4 weeks 20:20:25 ack next 20:20:42 markw: The controversy in wrap/unwrap is now what goes into import/export. 20:21:00 ... because w/u refers to i/e. 20:21:15 virginie: My target is the coming 4 weeks 20:21:38 israelh: We already published an implementation matching the pre-promises spec 20:21:50 ... that points to an older wrap/unwrap. 20:22:13 ... our timeframe is short to impact the next rev that will eventually ship 20:22:18 ... next week or two 20:22:52 ... if no resolution happens in next week or two, we'll continue to ship what we have 20:23:05 virginie: Can we start discussing, then? 20:23:51 markw: the stable part is the new wrap/unwrap text 20:24:03 ... where the construction is up to the javascript 20:24:14 ... decrypt+import; encrypt+export 20:24:16 recent Mark's comments on wrap/unwrap issue : http://www.w3.org/2012/webcrypto/wiki/KeyWrap_Notes_July 20:24:29 ... how do you preserve non-exportability when unwrapping? 20:24:43 ... we need at least one format that supports attributes 20:24:55 ... so we proposed mapping to/from JWK attributes 20:25:18 ... about preserving non-extractability. 20:25:20 Actually, lemme log that remark 20:25:21 PKCS#11 does this by exposing attributes on the wrapping key, rather than the key-to-be-unwrapped. So it's not necessarily true that the key format uses attributes 20:25:55 rsleevi: not sure the key format inherently needs attributes 20:26:10 ... the wrapping key can be the attribute bearer 20:26:11 q+ 20:26:39 ... working through accessible practice to web devs; compatible; 20:27:29 ... appreciate Mark's work; concerned about technical scalability 20:27:41 q+ 20:29:30 ack next 20:30:04 markw: the notion of attaching attributes to JWK has been part of our proposal from the beginning 20:30:20 ... Ryan's proposal is interesting, but what if you want to wrap and unwrap a wrapping key? 20:31:49 jimsch: I'm a bit worried. JOSE doesn't know have attributes on key-wrap keys 20:32:02 ... is there an issue if the key-wrap key is exportable? 20:32:23 markw: the proposal at the moment only uses the basic JWK key representation 20:33:33 Zakim, what's the code? 20:33:33 the conference code is 27978 (tel:+1.617.761.6200 sip:zakim@voip.w3.org), hhalpin 20:34:05 +[IPcaller] 20:34:13 Zakim, [IPcaller] is hhalpin 20:34:13 +hhalpin; got it 20:34:45 ... if you want to maintain non-extractability, everything has to be non-extractable 20:34:55 agenda+ status on high level api 20:35:34 virginie: ad-hoc conference call next week? 20:35:36 works for me 20:35:39 -Ben_Santos 20:36:03 ... react on the mailing list 20:36:13 q+ 20:36:21 Q- 20:36:27 ... status update in two weeks 20:36:31 ack next 20:36:49 markw: Let's try to keep implementation timeline in mind 20:37:03 ... we should be able to solve within that time-frame 20:37:31 virginie: let's put this as priority #1 on the mailing list 20:37:36 +q 20:37:40 q+ 20:37:53 ack next 20:38:14 MichaelH: I already addressed this earlier in the call. 20:38:17 MichaelH: can Ryan fill out import/export part of the spec to identify issues? 20:39:09 virginie: Action to WG to make progress 20:39:47 ... we can ask Mark, Ryan, Jim, to work on it. 20:40:05 virginie: Work on wrap/unwrap and try to reach consensus 20:40:07 +q 20:40:09 q+ 20:40:11 ack ws 20:40:16 ack next 20:40:46 MichaelH: I asked whether decrypt option should be disabled on unwrap 20:41:09 rsleevi: that's application side, not implementation, as we discussed at f2f 20:41:28 MichaelH: the spec doesn't prevent a decrypt operation if decrypt isn't part of the usage? 20:41:47 rsleevi: if you attempt to decrypt and don't have a decrypt operation, that will be prevented 20:42:11 ... there are sub-steps to be specified 20:42:41 MichaelH: "if the key usage does not say decrypt, then file exception" 20:42:52 rsleevi: file a bug 20:42:56 ack next 20:42:57 q? 20:43:42 israelh: Another question: we discussed support for streaming APIs, heard potentially v2 20:44:23 ... what's the group's appetite for that? 20:44:25 q+ 20:44:42 ack next 20:45:06 rsleevi: I would love to see streaming; the chunking problem exists with FileAPI as well 20:45:18 ... concern is inconsistency 20:46:38 note: Microsoft has made a proposal based on the Streams API 20:46:47 israelh: we want to figure out how to resolve the streaming issue consistently 20:46:57 ... what do we do with multi-part now? 20:47:19 what is meant by multi-part? 20:47:33 ... do we want to provide a band-aid now? 20:47:41 @jimsch: .process() with multiple incomplete buffers, followed by .finish() 20:47:56 @jimsch: Which is conceptually a band-aid for a lack of a streaming API 20:48:46 @jimsch: The question is sort of "Do we proceed with .process(), as a band-aid" or "Do we drop this, until we get a good/consistent Streaming API" 20:49:08 israelh: I think that's one of the things that will come out at last call 20:49:13 q+ 20:49:17 ... demand for multi-part 20:49:49 rsleevi: thanks Israel. this is an issue we should consider 20:50:24 ... it's not critical to our use cases right now, but people might well come forward with use cases at last call 20:50:47 ... do we proceed with a solution now, that we can never remove, or do we wait and proceed holistically? 20:51:22 q+ 20:51:30 ... how important are the multi-part and streaming use cases? the consistency of the web platform? 20:51:34 ack rs 20:51:35 suggests we move on on the agenda, and solve 20:52:02 virginie: suggest israelh file an issue to track the discussion 20:52:08 ack jimsch 20:52:33 jimsch: big difference between multi-part and stream; don't think the band-aid solves things 20:52:49 agenda? 20:52:57 without multipart output then streaming is not really addressed 20:53:11 zakim, take up agendum 3 20:53:11 agendum 3. "Web Crypto Key Discovery (next step)" taken up [from virginie] 20:53:18 virginie: Mark, any changes? 20:53:34 markw: one change pending, to simplify getkeysbyname to getkeybyname 20:53:53 ... without clear use case for multiple keys 20:54:24 virginie: On next call, bring forward next drafts of Key Discovery and Use Cases 20:54:28 ... in 2 weeks. 20:54:51 @markw I have a need for multi key discovery 20:55:29 zakim, take up agendum 4 20:55:29 agendum 4. "Web Crypto use cases" taken up [from virginie] 20:55:59 virginie: if Arun can integrate changes, we can bring forward for next working draft. not normative, but useful 20:56:07 zakim, take up agendum 6 20:56:07 agendum 6. "status on high level api" taken up [from virginie] 20:56:07 @markW I'll send a use case for returning multiple keys this week (for a possible future version of the discovery API) 20:56:38 virginie: ad hoc call about high-level API. Work to start in September based on polycrypt 20:57:05 zakim, take up agendum 5 20:57:05 agendum 5. "group life (summer activities and priorities)" taken up [from virginie] 20:57:19 virginie: Keep working through summer 20:57:30 ... priorities: finalize wrap/unwrap 20:57:43 ... bugs and work on low-level API 20:57:51 ... then address certificates, as discussed at f2f 20:58:34 ... objective, to go for last call during f2f at TPAC, China 20:58:53 ... any comments? 20:59:15 ... Sept/Oct, we'll need to set up testing activity 20:59:22 ... call for volunteers. 20:59:24 In particular, a maintainer for the git repo for test-suite 20:59:56 -vgb 20:59:58 ... also JOSE meeting in August IETF 21:00:29 ... when you hang up, think about what you can do for wrap/unwrap! 21:00:40 -Google 21:00:45 -jimsch 21:00:46 -ddahl 21:00:46 -hhalpin 21:00:47 -jyates 21:00:47 -karen 21:00:49 -virginie 21:00:49 -nvdbleek 21:00:50 -Wendy 21:00:51 -Netflix 21:00:54 -sangrae? 21:01:03 exit 21:01:13 Tracking issue for stream API support in Webcrypto: https://www.w3.org/2012/webcrypto/track/issues/49 21:01:19 RRSAgent, list attendees 21:01:19 I'm logging. I don't understand 'list attendees', wseltzer. Try /msg RRSAgent help 21:01:24 trackbot, end teleconf 21:01:25 Zakim, list attendees 21:01:25 As of this point the attendees have been +1.512.257.aaaa, +1.408.540.aabb, markw, Wendy, +1.650.214.aacc, vgb, +1.512.257.aadd, virginie, +1.857.928.aaee, rsleevi, MichaelH, 21:01:27 ... sangrae?, jyates, +1.512.257.aaff, karen, jimsch, israelh, +31.61.877.aagg, nvdbleek, mitchz, ddahl, +1.505.665.aahh, Ben_Santos, +33.4.42.36.aaii, hhalpin 21:01:32 RRSAgent, please draft minutes 21:01:32 I have made the request to generate http://www.w3.org/2013/07/08-crypto-minutes.html trackbot 21:01:33 RRSAgent, bye 21:01:33 I see no action items