- From: Frederick Hirsch <frederick.hirsch@nokia.com>
- Date: Tue, 19 Jan 2010 09:45:37 -0500
- To: XMLSec WG Public List <public-xmlsec@w3.org>
- Cc: Frederick Hirsch <frederick.hirsch@nokia.com>
Agenda: W3C XML Security WG (XMLSec) v3
Teleconference 19 January 2010
Distributed Meeting #54
corrected meeting number, added updates related to RNG schema and issues
10-12:00 am Eastern Time
Information on meeting times in various time zones:
http://www.w3.org/2008/xmlsec/Group/Overview.html#phone
Zakim Bridge:
+1.617.761.6200 conference code 965732# ('XMLSEC')
IRC Chat:
irc.w3.org (port 6665), #xmlsec
Web-based IRC (member-only):
<http://cgi.w3.org/member-bin/irc/irc.cgi>
Please note that attendance of XMLSEC WG teleconferences is
restricted to registered WG participants and persons invited by the
chair.
Publication Status available at
http://www.w3.org/2008/xmlsec/wiki/PublicationStatus
Chair: Frederick Hirsch
Regrets:
see http://www.w3.org/2008/xmlsec/Group/Overview.html#upcoming-meetings
1) Administrivia: Scribe confirmation, Agenda review, Meeting
Planning, Liaisons, Announcements
1a) Scribe selection
The current scribe list is at the end of this message, will rotate
through this list.
Scribe Instructions:
http://www.w3.org/2007/xmlsec/Group/Scribe-Instructions.html
1b) Agenda review
Review agenda.
1d) Liaisons and Coordination
See status at members page
http://www.w3.org/2008/xmlsec/Group/Overview.html#coordination
1e) Announcements
None
2) Minutes Approval
2a) Approve 12 January minutes
http://www.w3.org/2010/01/12-xmlsec-minutes.html
3) Editorial Updates
3a) XML Signature 1.1
i) http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/
0054.html (Frederick):
Added SHA-1 collisions reference provided by Hal to XML Signature
1.1, XML Encryption 1.1 and XML Security 1.1. Requirements. closing
ISSUE-158.
ii) http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/
0067.html (Frederick):
Updated SHA-1-Collisions reference, per ACTION-493 for ISSUE-165
added text on authoritative schema. added a note to all that the RNG
schema section is non-normative
iii) http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/
0081.html (Frederick): xmldsig-core-schema.rnc update
iv) Updated RNG schemas
http://lists.w3.org/Archives/Member/member-xmlsec-commits/2010Jan/0078.html
3b) Signature Properties
i) http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/
0054.html (Frederick):
Added SHA-1 collisions reference
ii) http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/
0067.html (Frederick):
Updated SHA-1-Collisions reference, per ACTION-493 for ISSUE-165
added text on authoritative schema. added a note to all that the RNG
schema section is non-normative
iii) http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/
0075.html (Frederick):
adding an XSD driver schema, which I used to validate the example. I
also added the proposed section that notes rules on placement of
properties within a Signature. I also converted to ReSpec to pick up
bibliography and other fixes.
iv) Added RNG driver schema, updated RNG schema to fix validation issue
http://lists.w3.org/Archives/Member/member-xmlsec-commits/2010Jan/0076.html
http://lists.w3.org/Archives/Member/member-xmlsec-commits/2010Jan/0077.html
http://lists.w3.org/Archives/Member/member-xmlsec-commits/2010Jan/0079.html
3c) XML Encryption 1.1
i) http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/
0051.html (Frederick):
Updated XML Encryption 1.1 source and HTML (and redlines): AES-GCM
update per ACTION-494text re schema per ACTION-493 ; make RNG section
non-normative ; This should complete ACTION-494 http://www.w3.org/2008/xmlsec/Drafts/xmlenc-core-11/Overview.htm
ii) http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/
0054.html (Frederick):
Added SHA-1 collisions reference provided by Hal to XML Signature
1.1, XML Encryption 1.1 and XML Security 1.1. Requirements. closing
ISSUE-158
iii) http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/
0067.html (Frederick):
Updated SHA-1-Collisions reference, per ACTION-493 for ISSUE-165
added text on authoritative schema. added a note to all that the RNG
schema section is non-normative
3d) XML Security 1.1 Requirements
http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/0054.html
(Frederick):
Added SHA-1 collisions reference provided by Hal to XML Signature
1.1, XML Encryption 1.1 and XML Security 1.1. Requirements. closing
ISSUE-158
4) Open XML Signature 1.1 Issues
ISSUE-91: ECC can't be REQUIRED in progress
ISSUE-173 Signature Properties specification does not state where the
properties must be placed
Completed with ACTION-497, close.
ISSUE-174 Driver XSD schema needed for Signature Properties completed,
http://lists.w3.org/Archives/Member/member-xmlsec-commits/2010Jan/0067.html
close
ISSUE-175 Driver RNG schema needed for Signature Properties
Completed, close ; http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/0087.html
ISSUE-176 RNG schema for Signature 1.1 depends on xslt.rnc
ok? http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/0086.html
ISSUE-177 Sp-example.xml in Signature Properties does not validate
against rnc schema any-containing-xmldsig11.rnc
completed, validated.
ISSUE-178 Highlight additional text constraints on XSD schema as such
AKI in X509Data?
5) Open Actions related to Last Call of XML Signature 1.1 and
SIgnature Properties
If these are completed please change status to Pending.
ACTION-350: Ed Simon to Propose text to align node set result
treatment for XSLT and XPath in 1.1 spec
6) Readiness to Enter Last Call and publish update drafts
http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/0085.html
(Makoto)
Decide to enter Last Call today?
7) Open Issues for XML Encryption 1.1
7a) ISSUE-150: Use of XML encryption type encoding in EXI
7b) ISSUE-178 Highlight additional text constraints on XSD schema as
such
7c) Review comments
http://lists.w3.org/Archives/Public/public-xmlsec/2010Jan/0084.html (Ed)
8) Open issues for Generic Hybrid Ciphers
ISSUE-164 -- RNG schema needed for Generic Hybrid Ciphers -- OPEN http://www.w3.org/2008/xmlsec/track/issues/164
Makoto Murata has volunteered to help with this.
9) Cross Reference, Namespaces
10) 2.0 Discussion
11) Action review
11a) Close Pending actions
These will be closed after the meeting unless concern raised before
or during meeting. Please review in advance of meeting.
ACTION-352: Ed Simon to Propose concrete examples for multiple
nodeset cases
ACTION-438: Shivaram Mysore to check 1.1 requirements against enc,
sig EDs
ACTION-489: Thomas Roessler to Cause another ping to Certicom
ACTION-491: Hal Lockhart to Suggest reference for SHA-1 to list for
XML Signature 1.1, indicating weakness of SHA-1
ACTION-492: Thomas Roessler to Review XSD Signature 1.1 schema
snippets vs standalone XSD 1.1 schema
ACTION-493: Frederick Hirsch to Add text to documents regarding
authoritative schema (ISSUE-165) to drafts listed in issue
ACTION-494: Frederick Hirsch to Add revision of AES-GCM to xml
encryption 1.1
ACTION-495: Frederick Hirsch to Ask makoto regarding RNG schema for
generic hybrid ciphers
ACTION-497: Frederick Hirsch to Update signature properties to state
where properties must be placed, ISSUE-173
11b) Open Action Review
Open actions are listed in Tracker at http://www.w3.org/2008/xmlsec/track/actions/open
Procedure for closing actions: http://www.w3.org/2007/xmlsec/Group/Overview.html#closing-actions
Please review open action list and update your actions appropriately:
http://www.w3.org/2008/xmlsec/actions-open.html
12) Issue review
http://www.w3.org/2008/xmlsec/track/issues/open
13) Other Business
14) Adjourn
Scribing list
----------------
Magnus Nyström, EMC (2 June, 2009)
Bradley Hill, Invited Expert (14 July 2009)
Ed Simon, Invited Expert (11 August 2009)
Bruce Rich, IBM (13 October 2009, 5 May 2009)
Pratik Datta, Oracle (20 October 2009, 13 May 2009 F2F pm)
Hal Lockhart, Oracle (27 October 2009, 16 June 2009)
Shivaram Mysore, Invited Expert (6 November 2009 F2F, 23 June 2009)
Brian LaMacchia, Microsoft (6 November 2009 F2F, 13 May 2009 F2F am)
Cynthia Martin, MITRE (17 November 2009, 7 July 2009)
Scott Cantor, invited expert (24 Nov 2009, 8 Sept 2009)
Chris Solc, Adobe (8 December 2009)
John Wray, IBM (15 Dec 2009, 1 Sept 2009)
Gerald Edgar, Boeing (5 January 2010, 5 November 2009 F2F)
Sean Mullan, Sun (12 January 2010, 6 October 2009)
regards, Frederick
Frederick Hirsch, Nokia
Chair XML Security WG
Received on Tuesday, 19 January 2010 14:47:07 UTC