14:51:34 RRSAgent has joined #xmlsec 14:51:34 logging to http://www.w3.org/2008/12/02-xmlsec-irc 14:51:36 RRSAgent, make logs member 14:51:36 Zakim has joined #xmlsec 14:51:38 Zakim, this will be XMLSEC 14:51:38 ok, trackbot; I see T&S_XMLSEC()10:00AM scheduled to start in 9 minutes 14:51:39 Meeting: XML Security Working Group Teleconference 14:51:39 Date: 02 December 2008 14:52:00 Chair: Frederick Hirsch 14:52:30 smullan has joined #xmlsec 14:52:37 Agenda: http://lists.w3.org/Archives/Public/public-xmlsec/2008Dec/0003.html 14:53:09 on a call 14:53:25 Regrets: Juan Carlos Cruellas, Konrad Lanz, Ed Simon 14:53:57 csolc has joined #xmlsec 14:54:11 scantor has joined #xmlsec 14:54:31 ok 14:54:42 yeah 14:54:52 Scribe: Scott Cantor 14:55:06 zakim, what is the code? 14:55:06 the conference code is 965732 (tel:+1.617.761.6200 tel:+33.4.89.06.34.99 tel:+44.117.370.6152), fjh 14:55:16 T&S_XMLSEC()10:00AM has now started 14:55:22 +scantor 14:55:57 +smullan 14:56:59 +Frederick_Hirsch 14:57:29 magnus has joined #xmlsec 14:58:35 Agenda: http://lists.w3.org/Archives/Public/public-xmlsec/2008Dec/0003.html 14:59:50 shivaram has joined #xmlsec 15:00:06 +Robert_Miller 15:00:09 +csolc 15:00:45 zakim, who is here? 15:00:45 On the phone I see scantor, smullan, Frederick_Hirsch, Robert_Miller, csolc 15:00:47 On IRC I see shivaram, magnus, scantor, csolc, smullan, Zakim, RRSAgent, fjh, anil, tlr, trackbot 15:00:49 +shivaram 15:00:54 zakim, call thomas-781 15:00:54 ok, tlr; the call is being made 15:00:58 +Thomas 15:01:02 zakim, mute me 15:01:12 shivaram should now be muted 15:01:46 zakim, who is here? 15:01:46 On the phone I see scantor, smullan, Frederick_Hirsch, Robert_Miller, csolc, shivaram (muted), Thomas 15:01:48 On IRC I see shivaram, magnus, scantor, csolc, smullan, Zakim, RRSAgent, fjh, anil, tlr, trackbot 15:01:51 brich has joined #xmlsec 15:02:10 TOPIC: Administratrivia 15:02:14 + +04670941aaaa 15:02:19 rdmiller has joined #xmlsec 15:02:21 + +1.512.286.aabb 15:02:29 zakim, aaaa is magnus 15:02:29 +magnus; got it 15:02:31 zakim, aaaa is magnus 15:02:31 sorry, fjh, I do not recognize a party named 'aaaa' 15:02:34 bhill has joined #xmlsec 15:02:37 zakim, aabb is brich 15:02:38 +brich; got it 15:03:03 F2F 13-14 January 15:03:15 logistics http://lists.w3.org/Archives/Member/member-xmlsec/2008Nov/0035.html 15:03:26 registratiion page http://www.w3.org/2002/09/wbs/42458/xmlsecredwood0109/ 15:03:35 +bhill 15:04:10 TOPIC: Liasons 15:04:29 ws-policy errata 15:04:30 http://lists.w3.org/Archives/Public/public-ws-policy/2008Nov/0002.html 15:04:47 pdatta has joined #xmlsec 15:05:03 TOPIC: Announcements 15:05:18 http://lists.w3.org/Archives/Public/public-xmlsec/2008Nov/0053.html 15:05:33 FIPS 186-3 (DSS) 15:05:48 please review and indicate any comments on the public list 15:05:52 +[Oracle] 15:06:12 zakim, [Oracle] is pdatta 15:06:12 +pdatta; got it 15:06:14 bal has joined #xmlsec 15:06:45 pdatta: needs attendance info for F2F a week before the meeting 15:06:47 +bal 15:07:12 TOPIC: Minutes Approval 15:07:32 http://www.w3.org/2008/11/18-xmlsec-minutes 15:07:39 RESOLUTION: Minutes for 18 Nov 2008 approved 15:07:53 so marked 15:07:55 TOPIC: Issues 15:08:04 ISSUE-72 closed, requirement for DTD solved (up to WG, though preferred) 15:08:17 TOPIC: Best Practices 15:08:22 Default attributes in XML Signature 15:08:28 http://lists.w3.org/Archives/Public/public-xmlsec/2008Nov/0054.html 15:09:16 sean msg http://lists.w3.org/Archives/Public/public-xmlsec/2008Nov/0055.html 15:10:44 proposed resolution: adopt the proposal from magnus regarding default attributes, removing material starting with "Another possibility" 15:11:19 +1 15:12:06 RESOLUTION: adopt the proposal from magnus regarding default attributes, removing material starting with "Another possibility" 15:12:43 kyiu has joined #xmlsec 15:12:51 ACTION: fjh to add default attribute language to Best Practices doc 15:12:51 Created ACTION-111 - Add default attribute language to Best Practices doc [on Frederick Hirsch - due 2008-12-09]. 15:13:00 TOPIC: 1.1 draft 15:13:09 http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview.htm 15:13:19 http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/xmldsig-ecc.xsd 15:13:26 http://www.w3.org/2008/xmlsec/Drafts/xmldsig-core-11/Overview_diff.htm 15:13:36 fjh: suggested we drop DSA from required list 15:13:41 Still require DSAwithSHA1? 15:13:51 http://lists.w3.org/Archives/Public/public-xmlsec/2008Dec/0000.html 15:14:13 bal: original key size defined was too small anyway, and the RSA patent was the big driver for DSA 15:14:48 + +1.425.237.aacc 15:15:03 required for verification 15:15:04 bal: would prefer to see it optional, not even recommended 15:15:12 +1 15:15:18 Gerald-Edgar has joined #xmlsec 15:16:52 q+ 15:17:34 bal: might want to say something about key size anyway, if it's left as required for verifying 15:18:50 fhirsch3 has joined #xmlsec 15:19:23 +[Microsoft] 15:19:25 bal: would prefer not to see it as recommended at all, and have the spec make it optional and note the issues around it 15:20:54 csolc: needs tp be required to verify, but we need language either way explaining the issues 15:21:00 s/tp/to 15:21:32 ACTION: bal to draft text on DSA issues for 1.1 15:21:32 Created ACTION-112 - Draft text on DSA issues for 1.1 [on Brian LaMacchia - due 2008-12-09]. 15:21:38 q- 15:22:24 ietf feedback - http://lists.w3.org/Archives/Member/member-xmlsec/2008Dec/0001.html 15:23:24 fjh: need feedback from implementers on algorithm changes 15:24:02 Brian action should include drafting language about MUST and MAY for DSAwithSHA1 15:24:41 zakim, [Microsoft] is kyiu 15:24:41 +kyiu; got it 15:27:05 fjh: want to publish a draft of 1.1 in January 15:28:42 ISSUE-50? 15:28:42 ISSUE-50 -- Missing < in closing DigestValue element tag -- OPEN 15:28:42 http://www.w3.org/2008/xmlsec/track/issues/50 15:28:51 fjh: would be good for tlr to get versioning text out to the list 15:29:10 ACTION: tlr to suggest text re versioning and namespaces for XML Signature 15:29:10 Created ACTION-113 - Suggest text re versioning and namespaces for XML Signature [on Thomas Roessler - due 2008-12-09]. 15:29:59 -magnus 15:30:30 scott noted some 1.1 cleanup for text language eg RetrievalMethod etc could be useful 15:32:23 -bal 15:32:40 q+ 15:33:02 pdatta: think most of the newer proposals would be for 2.0, so not a short term impact on 1.1 15:33:02 group notes that streaming and transform material in 2.0 15:33:08 ack smullan 15:33:43 sean notes could encourage XPath filter in 1.1 instead of XPath 15:33:52 q+ 15:33:58 +1 15:34:12 ack tlr 15:35:09 q+ 15:35:25 tlr: how much effort do we spend on the current transform model? 15:35:32 ack csolc 15:36:05 csolc: supports moving some transforms to optional to give people a warning about 2.0 15:36:13 csolc notes moving transforms to optional in 1.1 is a heads up for 2.0 15:37:08 q+ 15:38:08 ack brich 15:38:31 brich: seemed that 1.1 would be for adding algorithms, and 2.0 would take things out 15:38:55 fjh notes that 1.1 could have some clarifications - need to give heads up in email announcing 1.1 about 2.0, request feedback on 1.1 and requirements for 2.0 15:42:52 ACTION: scantor to propose language improvements for 1.1 draft 15:42:52 Created ACTION-114 - Propose language improvements for 1.1 draft [on Scott Cantor - due 2008-12-09]. 15:44:16 ACTION: smullan to craft language on encouraging XPath2 Filter for Best Practices doc 15:44:16 Created ACTION-115 - Craft language on encouraging XPath2 Filter for Best Practices doc [on Sean Mullan - due 2008-12-09]. 15:44:33 TOPIC: Certificate Encoding 15:44:45 http://lists.w3.org/Archives/Public/public-xmlsec/2008Nov/0050.html 15:45:06 scott outlined his proposal for 1.1 and also the best practices 15:45:32 scott noted based on text from Magnus with additions 15:46:42 RESOLUTION: accept proposed text for 1.1 and BP drafts 15:47:03 ACTION: fjh to add approved certificate encoding text to drafts 15:47:03 Created ACTION-116 - Add approved certificate encoding text to drafts [on Frederick Hirsch - due 2008-12-09]. 15:47:12 TOPIC: Public Web Site 15:47:34 http://lists.w3.org/Archives/Member/member-xmlsec/2008Nov/0033.html 15:47:38 zakim, unmute me 15:47:38 shivaram should no longer be muted 15:48:41 +hlockhart 15:48:41 zakim, mute me 15:48:41 shivaram should now be muted 15:48:56 RESOLUTION: approved updates to public web site 15:49:05 TOPIC: XMLSignature schema 15:49:14 http://lists.w3.org/Archives/Public/public-xmlsec/2008Nov/0049.html 15:49:54 scott recorded issues he noted with xml Signature schema, in four categories 15:50:29 scott noted IDs, Attribute Extensibility, Mixed Content, KeyInfo child issues as issues 15:50:47 scott noted not a generic schema redesign from scratch but note of issues 15:54:16 scott noted that may not want to pass bare keys exactly as OpenSSL but need to do something, this would be a new element 15:55:39 scott asks is it appropriate for 1.1 to add this addition for key? 15:56:34 scott or additional document , perhaps using 2.0 namespace in advance 15:57:31 ACTION: scantor to propose a schema and language for bare key encoding in KeyInfo 15:57:31 Created ACTION-117 - Propose a schema and language for bare key encoding in KeyInfo [on Scott Cantor - due 2008-12-09]. 15:59:28 scott notes could use separate namespace for this, not 2.0 or 1.0 15:59:44 need to determine namespace to use for this 15:59:57 s/XMLSignature/XML Signature/ 16:01:07 TOPIC: Requirements 16:01:24 updated draft http://lists.w3.org/Archives/Public/public-xmlsec/2008Nov/0044.html 16:01:57 web services requirements http://lists.w3.org/Archives/Public/public-xmlsec/2008Sep/0036.html 16:02:45 RESOLUTION: add Hal's text to requirements doc 16:03:12 ACTION: fjh to add web services text from Hal to Requirements draft 16:03:12 Created ACTION-118 - Add web services text from Hal to Requirements draft [on Frederick Hirsch - due 2008-12-09]. 16:04:22 http://www.w3.org/2008/xmlsec/Drafts/transform-note/Overview.html 16:05:47 ACTION: fjh to add pointer to Transforms note to Requirements draft 16:05:47 Created ACTION-119 - Add pointer to Transforms note to Requirements draft [on Frederick Hirsch - due 2008-12-09]. 16:07:35 TOPIC: Signature Metadata 16:07:40 ISSUE-32, http://www.w3.org/2008/xmlsec/track/issues/32 16:08:14 fjh: do we need to add metadata as a requirement for 2.0? 16:09:22 scott notes that this is about signing context, signer etc. Appropriate to signature from business sense... 16:10:38 new namespace and add a version attribute. 16:11:08 What kind of metadata are we speaking of? it could be anything about the signature. Will we be defing a standard set of metadata? One example would be the relation of the signature applied to other signatures such as signatures with expired certificates. 16:11:23 hlockhar has joined #xmlsec 16:12:57 scott notes for whitespace topic could have class of documents that are not mixed content, hence requirement on c14n 16:14:35 fjh: please send suggestions for F2F topics to list 16:15:07 fjh: will close pending actions 16:16:41 tlr has items for 1.1 including separating normative and informative references, so keep ACTION-2 open 16:17:49 sorry, it's been a crazy couple of weeks 16:18:29 TOPIC: Open Action Items 16:18:38 zakim, unmute me 16:18:38 shivaram should no longer be muted 16:19:40 zakim, mute me 16:19:40 shivaram should now be muted 16:21:23 tlr: W3C notes can be done as HTML or with xmlspec to generate the HTML 16:22:52 http://lists.w3.org/Archives/Public/public-xmlsec/2008Oct/0042.html 16:23:56 algorithm uri, document reference, what it is 16:24:12 additional comment 16:28:06 smullan has joined #xmlsec 16:28:58 TOPIC: Open Issues 16:29:20 fjh reviewed open issues 16:31:45 issue74 hmac-sha256 required in 1.1? 16:32:35 I think the issue is referring to a question about the status of HMAC-SHA256 in SP 800-57 Part 1 16:34:03 ACTION: kyiu to review SP 800-57 for HMAC-SHA256 item 16:34:04 Created ACTION-120 - Review SP 800-57 for HMAC-SHA256 item [on Kelvin Yiu - due 2008-12-09]. 16:34:22 issue-77 ordering requirement in signature 1.1 16:36:02 ISSUE-70 closed 16:36:13 bhill has joined #xmlsec 16:36:52 Issue-77 can be closed 16:37:55 -pdatta 16:37:56 -hlockhart 16:37:58 -shivaram 16:37:58 -csolc 16:37:59 -brich 16:38:00 -smullan 16:38:01 - +1.425.237.aacc 16:38:06 -kyiu 16:38:08 -Robert_Miller 16:38:13 Zakim, list participants 16:38:13 As of this point the attendees have been scantor, smullan, Frederick_Hirsch, Robert_Miller, csolc, shivaram, Thomas, +04670941aaaa, +1.512.286.aabb, magnus, brich, bhill, pdatta, 16:38:17 ... bal, +1.425.237.aacc, kyiu, hlockhart 16:38:31 -bhill 16:38:36 RRSAgent, generate minutes 16:38:36 I have made the request to generate http://www.w3.org/2008/12/02-xmlsec-minutes.html fjh 16:39:20 -Frederick_Hirsch 16:39:21 -scantor 17:05:00 disconnecting the lone participant, Thomas, in T&S_XMLSEC()10:00AM 17:05:01 T&S_XMLSEC()10:00AM has ended 17:05:03 Attendees were scantor, smullan, Frederick_Hirsch, Robert_Miller, csolc, shivaram, Thomas, +04670941aaaa, +1.512.286.aabb, magnus, brich, bhill, pdatta, bal, +1.425.237.aacc, kyiu, 17:05:05 ... hlockhart 19:01:14 Zakim has left #xmlsec 19:47:42 anil has joined #xmlsec 23:45:45 anil has left #xmlsec