19:47:45 RRSAgent has joined #crypto 19:47:45 logging to http://www.w3.org/2016/05/02-crypto-irc 19:47:49 Zakim has joined #crypto 19:49:04 Meeting: WebCrypto 19:51:52 jimsch has joined #crypto 19:52:34 wseltzer has changed the topic to: WebCrypto Call, May 2, 2000 UTC 19:52:52 engelke_ has joined #crypto 19:53:10 hhalpin has joined #crypto 19:53:23 great work engelke! 19:53:33 thanks, harry 19:53:33 trackbot, start meeting 19:53:35 RRSAgent, make logs public 19:53:37 Zakim, this will be CRYPT 19:53:37 ok, trackbot 19:53:38 Meeting: Web Cryptography Working Group Teleconference 19:53:38 Date: 02 May 2016 19:54:21 deiu has joined #crypto 19:55:48 virginie has joined #crypto 19:58:41 zakim, code? 19:58:41 I have been told this is CRYPT 19:59:19 zakim, this is webex +1-617-324-0000 643 244 026 19:59:19 got it, wseltzer 20:00:11 present+ virginie 20:00:13 present+ wseltzer 20:00:19 ttaubert has joined #crypto 20:00:28 present+ jimsch 20:00:30 agenda? 20:00:32 present+ engelke 20:00:37 present+ ttaubert 20:00:40 agenda+ welcome 20:00:53 agenda+ test status and related clarifications 20:01:04 agenda+ status on implementations 20:01:11 agenda+ status on the specification 20:01:21 agenda+ milestones 20:01:22 markw has joined #crypto 20:01:29 present+ markw 20:01:38 zakim, who is on the call ? 20:01:38 Present: virginie, wseltzer, jimsch, engelke, ttaubert, markw 20:01:38 Can someone post the dial-in details ? 20:01:57 to markw webex +1-617-324-0000 643 244 026 20:02:05 +1-617-324-0000 Access Code: 643 244 026 (Member-protected password) WebEx Link IRC irc.w3.org:6665 #crypto 20:02:37 agenda? 20:03:27 present+ markw 20:05:52 scribenick: wseltzer 20:06:03 zakim, take up agendum 1 20:06:03 agendum 1. "welcome" taken up [from virginie] 20:06:13 virginie: reviewing agenda 20:06:44 present+ ryan_hurst 20:07:01 present+ hhalpin 20:07:03 ryan: we should talk about ASN.1 encoding issues, status 20:07:17 In detail, I hope we have a proposal over this Ryan :) 20:07:17 nvdbleek has joined #crypto 20:07:30 zakim, take up agendum 2 20:07:30 agendum 2. "test status and related clarifications" taken up [from virginie] 20:07:37 virginie: Status update on testing? 20:07:42 ... I've seen some updates from Charles 20:08:10 charles: started writing tests for generateKey 20:08:27 ... figured out the platform, wrote tests for all the combos of parameters that should work 20:08:43 ... and then ran through all the combinations of bad parameters to make sure they throw the right error 20:08:48 ... in the order the spec describes 20:09:00 ... from preliminary run, these tests take a long time 20:09:10 ... generating RSA keys is slow, and lots of tests being run 20:09:30 ... FF and Chrome both do well on success tests, less consistent on failure test 20:09:38 +1 to errors returned on tests not being what is specified 20:09:50 ... expect to be done with complete set of tests on generateKey this week 20:09:52 ... for review 20:10:09 ... will test what browsers say the support, not whether they do it correctly 20:10:14 virginie: Thanks! 20:10:19 ... next step for others to review the tests 20:10:30 q? 20:10:42 ... browsers should review them 20:10:45 q+ 20:10:59 q+ 20:11:11 ryan_hurst - thats much better! 20:11:16 ryan: I've started a list of tests based on the spec 20:11:22 ... intend to share with the list this week 20:11:48 ... then look at what tests Charles and ohters have written, what gaps exist 20:12:17 ... re reviewing findings, I'll make sure to get a date when Google can get back to you 20:12:23 ... have to coordinate internally 20:12:40 virginie: Thank you 20:13:43 jimsch: I've been working on tests too, working with Charles on merge strategy 20:13:57 ttaubert: I'll take a look by next meeting, talk with team 20:14:03 ack markw 20:14:31 markw: With the generateKey tests, looks as though it's testing every possible combo of name, parameter, key usage 20:14:41 ... is it necessary to test every permutation? 20:14:58 q+ 20:15:03 ... testing independently rather than matrix might be sufficent 20:15:11 jimsch: I think it's important that we have the negative tests 20:15:24 s/jimsch/ryan_hurst/ 20:15:33 ... from implementation experience, most often, success modes interoperate, but failure modes and flexible modes don't 20:15:38 q? 20:15:45 ... so I'd hate to lose the testing of failures 20:16:08 markw: are you talking about problems that might come from specific combos, more likely in failures? 20:16:11 jimsch: yes 20:16:22 markw: maybe the failures run more quickly? 20:16:32 charles: but there are many more of the failure tests 20:16:46 markw: how long does it take to run full generatekey? 20:16:55 charles: maybe 5min for each of success and failure 20:17:16 ... failure one isn't completing in FF on linux. Too many promises queued 20:17:37 q? 20:18:04 jimsch: is it really a problem if the test takes 5min? 20:18:27 s/jimsch/ryan_hurst/ 20:18:39 markw: agree, err on the side of completeness 20:19:03 ack jimsch 20:19:29 jimsch: I'd like to refactor tests so they're more algorithm-centric 20:19:47 ... e.g., to enable people to run all the tests that match a pattern 20:19:51 I agree. 20:19:55 ... help people for using the tests in development 20:20:32 virginie: ok, who's going to do that? 20:20:47 jimsch: ryan, charles, and I can work on that 20:21:01 q? 20:21:14 ryan_hurst: looking forward to working with Jim and Charles 20:21:34 virginie: good coverage, tests anyone can use and improve, is a good target. Thanks to the three of you. 20:21:38 ack hhalpin 20:21:52 hhalpin: tests serve a dual purpose: get us out of CR to Proposed Rec 20:21:59 ... for that, prioritize coverage 20:22:11 agenda ? 20:22:27 ... then, we can get into PR, refactor tests and integrate in WebPlatform Test suite 20:22:51 ... can invite PLH to talk further 20:22:55 ... re timing issues 20:23:02 virginie: anything else on testing? 20:23:03 notice that we can keep refactoring the tests even after we've left PR, as long as the first version has the right coverage 20:23:07 zakim, take up agendum 3 20:23:08 agendum 3. "status on implementations" taken up [from virginie] 20:23:24 virginie: Implementations and incompatibilities between implementations 20:23:36 ... Ryan mentioned ASN.1 20:23:48 pbkdf2 keyGeneration? 20:24:29 Ryan: thread we just had on PBKDF2, removing derivation? 20:24:42 jimsch: yes, I think we heard consensus to remove that 20:24:51 virginie: any comment on removing PBKDF2? 20:25:02 PROPOSED: Remove PBKDF2 20:25:14 virginie: removing a feature with no impact 20:25:23 ryan: yes, no UAs implement 20:25:23 Still keeping other operations for it. 20:25:32 PROPOSED: Remove PBKDF2 derivation 20:25:33 +1 20:25:36 +1 20:25:38 +1 20:26:50 Section 32.4 - remove Key Generation option 20:27:02 +1 20:27:02 Proposed: Remove the generate key functionality from PBKDF2, but allow for Import Key 20:27:22 ttaubert: I support removing generateKey for PBKDF2 20:27:36 RESOLVED: Remove the generate key functionality from PBKDF2, but allow for Import Key 20:28:03 Ryan: whether it makes sense to specify a profile of ASN.1 that implementations would support 20:28:29 ... beneficial to be explicit, rather than leaving it unspecified up to underlying libraries 20:28:49 ... Jim and I should sit down to come up with proposal to socialize on-list, review with implementers 20:28:49 q? 20:29:19 ... non-ambiguous with regard to data structure expectations 20:29:52 virginie: happy to see more clarity in the spec to promote interop 20:30:09 ... can you socialize on the list for our next call in 2weeks? 20:30:23 ryan: that's probably too aggressive; it's non-trivial 20:30:37 ... lean on Jim's experience here. 20:30:53 virginie: Let's review in one month, discuss on-list in meantime 20:31:16 q+ 20:31:18 ... anything else on which you'd like decision or path? 20:31:31 q? 20:31:50 ack jimsch 20:31:57 jimsch: I raised an issue on HKDF 20:32:13 ... changing set of parameters passed in. Would people review for decision? 20:32:43 ryan: could you re-send that to the list? 20:33:05 subject: Renaming of HKDF-CTR to HKDF converstaion starts on 3/7/16 20:33:14 virginie: bug review 20:33:30 ... let's have a formal bug review on the next call in 2 weeks 20:34:11 markw: I have a backlog of editing; bugs to move from bugzilla. I'll start on the simpler ones there 20:34:34 agenda ? 20:34:37 virginie: Thanks! 20:34:51 -> https://lists.w3.org/Archives/Public/public-webcrypto/2016Mar/0027.html Renaming of HKDF-CTR to HKDF (start of jimsch's thread) 20:35:02 zakim, take up agendum 5 20:35:02 agendum 5. "milestones" taken up [from virginie] 20:35:11 virginie: I sent milestones that were too aggressive 20:35:35 ... we need to make effort so we're not continually asking for extensions 20:35:41 ... keep up the intensive work 20:35:47 ... of course good work is better than rushed work 20:35:56 ... so keep the calls every 2 weeks for the WG 20:36:06 ... and testers are meeting informally 20:36:19 ... still need to resolve implementation divergence 20:36:30 ... in a month, if possible 20:37:10 virginie: thanks to those who are participating. Do we need to do anything to bring others in? 20:37:25 ryan: 1.5 months isn't realistic for PR transition 20:37:36 ... it's not a question of people so much as of time 20:37:37 q+ 20:37:50 ... we have engagement from all the UAs we need to take it to last call 20:37:55 q+ 20:37:58 ... need to go through the tasks one by one 20:38:07 ack wseltzer 20:39:05 wseltzer: good to have evidence of real work on the testing and progress on the interop questions 20:39:12 ... if we need another extension 20:39:30 jimsch: I'm less worried about the testing than about getting decisions where there are interop problems 20:39:38 ... we need to get decisions made and into the draft 20:39:38 q+ 20:39:42 ack jimsch 20:39:51 virginie: in terms of decisions, we have the right people on the call 20:40:07 ... if we can't make decision, we might have to remove features 20:40:17 ... in terms of editing, it's all on MarkW's shoulders 20:40:26 ... he might like some additional help 20:40:48 ryan: Mark, if you have a queue and need help, let me know 20:40:56 markw: working to get it all into github 20:40:58 q? 20:41:00 ack hhalpin 20:41:32 hhalpin: We have great momemtum; let's keep the progress up. 20:42:04 virginie: thanks, good to see progress 20:42:10 Topic: AOB 20:42:40 @@: just released XML-DSIG implementation on top of WebCrypto 20:43:04 s/@@/ryan 20:44:00 Charles: in production use with WebCrypto, signing and verifying documents 20:44:30 virginie: please share information on usage of WebCrypto 20:44:55 ... Also wanted to note last week's workshop, Hardware Based Secure Services CG meeting 20:45:16 ... we talked about extending WebCrypto, giving option for keys backed by secure element or TEE 20:45:23 ... in discussion 20:45:48 ryan: you may be interested in polyfill I released for WebCrypto PKCS11 in node 20:46:05 ... personal projects on the side 20:46:30 virginie: Our next call for WG will be in two weeks 20:46:42 hhalpin: do testers want intermediate calls? 20:47:19 Charles: maybe Ryan, Jim, and I could coordinate among ourselves rather than standing call 20:47:28 jimsch: we probably want to talk before Monday 20:47:38 hhalpin: the call is available if you need it Monday 20:47:58 virginie: Next official call, May 16, same call-in 20:48:15 ... thanks for the dynamic work. Great progress. 20:48:42 zakim, bye 20:48:42 leaving. As of this point the attendees have been virginie, wseltzer, jimsch, engelke, ttaubert, markw, ryan_hurst, hhalpin 20:48:42 Zakim has left #crypto 20:48:50 rrsagent, draft minutes 20:48:50 I have made the request to generate http://www.w3.org/2016/05/02-crypto-minutes.html wseltzer 21:06:02 charles has left #crypto 21:06:12 engelke has left #crypto 21:06:19 charlesengelke has left #crypto 21:34:42 ale has joined #crypto