W3C XML-Encryption Workshop

San Francisco, CA
2 November 2000

Hosted by

XCert

See the Call For Participation and registration pages for information on how to participate.

DRAFT PROGRAM

In the morning we begin by understanding the difference between encryption and authorization and the resulting the requirements of authorization; we expand our scope of requirement discussion; then focus the question on protocol and end-to-end security issues. The afternoon we focus on the present proposals, identify issues, determine direction, and discuss how to move forward.

THURSDAY 02 NOVEMBER

8.30 - 9.00 Continental Breakfast

9.00 - 9.35 (35 minutes): Introduction

Group, Introductions Around the Room (15m)
Joseph Reagle, Agenda (10m)
Group, Agenda Bashing (10m)

9.50 - 10.30 (40 minutes): Encryption, Authentication, and Authorization

the distinction between encryption, authentication, authorization, and the requirements resulting from authorization applications.

Mark Scherling, XCert: Encryption requirements resulting from proposed authorization model
Christian Geuer-Pollmann, Uni-Siegen: Comparison/analysis of encryption and authorization.

10.30 - 10.45 break

10.45 - 12.50 (125 minutes): RequirementsI

Applications, Parsers, References, and Protocol -- or lack thereof!

Steve Wiley, MyProof (20m): Requirements with respect to deployed parsers, target document fragments, nested encryption, etc.
Eric Cohen, PriceWaterHouseCoopers (20m): XBRL requirements and lots of questions (process and technical).
Thane Plambeck, Verisign (20m): Verisign requirements for XML Encryption
Mike Wray, Hewlett-Packard (20m): XML and end-to-end security .
Barb Fox, Microsoft (20m): Fire-and-forget encryption.

12.50 - 2.00 lunch

2.00 - 3.30 Proposals (90 minutes)

Proposals (90m)
1. Ed Simon (45m): XML Encryption Syntax and Processing and XmlEncryptor - An XML Encryption Demonstrator: "Presenting an overview on the XML Encryption spec that focuses on encrypting various content. Will also report on techniques for coding XML Encryption in various scenarios (eg. encrypting element, element content, attribute values in DOM and XSLT frameworks)."
2. Hiroshi Maruyama (45m): Specification of Element-wise XML Encryption and Note on XML Encryption

3.30 - 3.45 break

3.45 - 5:30 Content IV (105 minutes)

Joseph Reagle, Close Technical Issues with Action Items (60m)
Joseph Reagle, Process and Action-items (45m)
1. Summary of W3C Process
2. Charter
3. Requirements Document
4. Specification Proposals

Joseph Reagle <reagle@w3.org> Last updated: 19th September 2000.