See also: IRC log
<trackbot-ng> Date: 03 June 2008
trackbot-ng, start telcon
<trackbot-ng> Meeting: XML Security Specifications Maintenance Working Group Teleconference
<trackbot-ng> Date: 03 June 2008
<scribe> Chair: Frederick Hirsch
<scribe> Scribe: John Wray
<jcc> Frederic, I do not know if the emails that I sent to you and thomas on the meeting in Barcelona have arrived: I have been told that our mail server is experiencing problems for sending emails....
<tlr> jcc, they have arrived
<tlr> http://www.w3.org/2008/xmlsec/Group/barcelona.html
<jwray> fjh: Next meeting June 10th, Bruce to scribe, then June 17th.
http://www.w3.org/2008/05/20-xmlsec-minutes.html
<jwray> RESOLUTION: Minutes approved
instructions for joining http://www.w3.org/2004/01/pp-impl/42458/instructions
<jwray> fjh: Register for F2F RSN, instructions in agenda.
F2F for next WG planned. 16-17 July, Barcelona.
logistics http://www.w3.org/2008/xmlsec/Group/barcelona.html
Technical Plenary / Advisory Committee Meetings Week, 20 - 24 October 2008
XML Security scheduled Monday 20 October - Tuesday 21 October.
Schedule: http://www.w3.org/2008/10/TPAC/Schedule
<klanz2> +1
<klanz2> ... to keep this slot
<jwray> tlr: Charter for current WG expires June30
<jwray> RESOLUTION: Additional call next week
<klanz2> I should be signed up already, tlr can you confirm that?
<tlr> klanz2, yep
<tlr> we can carry on the best practices into the new group, no problem with that
<jwray> fjh: Deliverables completed, Best Practices still in-progress
<klanz2> whirlpool?
<klanz2> http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2008Mar/0002.html
ietf internet draft produced and posted by Donald, then WG can review
<jwray> Donald will send draft Internet Draft to list prior to publication for short email review. by WG.
http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2008May/0033.html
Object can have mixed content
the optional KeyInfo doesn't seem to actually work
I have contacted Norm Walsh with this additional information
sean: organize by audience
<jwray> Organize by 3 audiences: Implementors, validators, Signers
http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2008May/0038.html
implementors implies security library, validators and signers refers to application level
http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2008May/0036.html
pratik comment http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2008May/0037.html
sean - we should say why we give advice in addition to advice
scribe: issues less serious if validate sig first, give earlier in doc that advice
pratik: implementers first, order of operations first, most important
<jwray> ACTION: pratik to Reorganize best practices document for implementers, validators and signers, incorporate Pratik's proposed changes provided on list [recorded in http://www.w3.org/2008/06/03-xmlsec-minutes.html#action01]
<trackbot-ng> Created ACTION-162 - Reorganize best practices document for implementers, validators and signers, incorporate Pratik's proposed changes provided on list [on Pratik Datta - due 2008-06-10].
<jwray> ...based on changes in email conversation
<jwray> RESOLUTION: BP doc should be re-organized based on email discussion; Pratik to edit doc.
Discussion of whether denial of service tests were in fact effective denial of service - not clear yet to others.
discussion re see what you sign...
some implementations cache what is signed, and can then compare...
sean - ability to re-digest input
pratik message http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2008Jun/0004.html
may need APIs for accessing nodeset information...
Time Stamp comments from Juan Carlos
http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2008May/0030.html
<klanz2> I need to leave in a minute anyway, so if we want to talk about streaming we may want to that next week
http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2008Jun/0005.html
<jwray> Klanz: streaming discussion. Digest can't be checked until message has been completely processed.
<tlr> +1 to moving it to the new group
<tlr> TLS would be an example
suggest discussing in next XMLSec WG.
pratik: streaming big topic, had presentation at workshop, should be in next WG.
<jwray> fjh: Defer streaming discussion to next WG.
hal: need to have reasonable reachable problem, e.g. better define problem, e.g. process linearly, chunks etc, define assumptions
http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2008May/0030.html
<jwray> fjh: First comment is editorial - suggest accepting, second needs more discussion.
<jwray> RESOLUTION: Accept first change in Juan-Carlos' message.
<jwray> ACTION: pratik to Add additional text re DSS and XAdES to best practices document [recorded in http://www.w3.org/2008/06/03-xmlsec-minutes.html#action02]
<trackbot-ng> Created ACTION-163 - Add additional text re DSS and XAdES to best practices document [on Pratik Datta - due 2008-06-10].
<jwray> ACTION-151 closed
<trackbot-ng> ACTION-151 Implement don Eastlake's changes to xml signature home page notes added
see http://lists.w3.org/Archives/Public/public-xmlsec-maintwg/2008Jun/0000.html
<jwray> ACTION-154: closed
<trackbot-ng> ACTION-154 Make transition request for test case document notes added
http://lists.w3.org/Archives/Member/member-xmlsec-maintwg/2008Jun/0000.html
action 153 open
<tlr> ACTION-154 closed
<jwray> ACTION 159 open
<jwray> ACTION 161 closed
<tlr> ACTION-160 closed
see http://www.w3.org/2007/xmlsec/Group/Overview.html
<tlr> ACTION-161 closed
<tlr> ACTION-158?
<trackbot-ng> ACTION-158 -- Frederick Hirsch to check on status with customer. -- due 2008-05-27 -- OPEN
<trackbot-ng> http://www.w3.org/2007/xmlsec/Group/track/actions/158
<tlr> ACTION-158: on thomas
<trackbot-ng> ACTION-158 Check on status with customer. notes added
<jwray> ACTION 158 reassigned to tlr
<tlr> trackbot-ng, close ACTION-154
<trackbot-ng> ACTION-154 Make transition request for test case document closed
<tlr> trackbot-ng, close ACTION-160
<trackbot-ng> ACTION-160 Add more documentation to the Best Practices document for his examples closed
<tlr> trackbot-ng, close ACTION-161
<trackbot-ng> ACTION-161 Add link to best practices example directory to WG administrative page closed