12:02:46 <RRSAgent> RRSAgent has joined #wot-sec
12:02:46 <RRSAgent> logging to https://www.w3.org/2021/07/19-wot-sec-irc
12:03:08 <kaz> meeting: WoT Security
12:03:32 <kaz> present+ Kaz_Ashimura, Michael_McCool, Philipp_Blum
12:04:20 <Oliver> Oliver has joined #wot-sec
12:08:02 <McCool> McCool has joined #wot-sec
12:08:37 <Mizushima> Mizushima has joined #wot-sec
12:08:54 <kaz> present+ Oliver_Pfaff, Tomoaki_Mizushima
12:09:08 <citrullin> topic: Minutes review
12:09:38 <kaz> scribnick: citrullin
12:09:53 <kaz> -> https://www.w3.org/2021/07/12-wot-sec-minutes.html Jul-12
12:11:14 <citrullin> mm: Any objections?
12:11:20 <citrullin> ... no objections
12:11:50 <citrullin> topic: Best practices document
12:12:24 <citrullin> mm: Added a couple of PRs to fix up some things. It is a work in progress.
12:13:46 <citrullin> mm: I suggest we go through the easy ones first.
12:14:25 <citrullin> PR 17 -> https://github.com/w3c/wot-security-best-practices/pull/17
12:14:43 <citrullin> mm: Any objections to merge?
12:14:49 <citrullin> ... no objections. merged.
12:16:22 <citrullin> PR 18 -> https://github.com/w3c/wot-security-best-practices/pull/18
12:16:32 <citrullin> mm: I commented out the summary. Any objections to merge?
12:16:39 <citrullin> ... no objections. merged.
12:17:00 <citrullin> PR 19 -> https://github.com/w3c/wot-security-best-practices/pull/19
12:17:40 <citrullin> mm: We agreed on adding an editors note to the section. Oliver wants to work on it.
12:19:37 <citrullin> mm: Any objections to merge this?
12:19:44 <citrullin> ... no objections. Merged.
12:20:47 <citrullin> PR 20 -> https://github.com/w3c/wot-security-best-practices/pull/20
12:20:58 <citrullin> mm: Isn't ready to merge yet. Some rendering issues.
12:23:05 <citrullin> mm: Respec looks for MUST, SHOULD etc. Since this isn't a formative document, I have to rewrite it.
12:25:22 <citrullin> mm: Any objections to merge it when it is fixed?
12:25:30 <citrullin> ... no objections.
12:25:48 <McCool> https://github.com/w3c/wot-security-best-practices/pull/21
12:28:58 <citrullin> pb: It is pretty streight forward. TLS 1.3 makes it also possible to use Raw Public Keys. So, I added that to the spec with the references to it.
12:29:11 <citrullin> op: TLS 1.3 is still the exception. 1.2 is still mostly used.
12:29:31 <citrullin> mm: Firefox and Chrome support it. That is good. Some mobile browser don't.
12:33:37 <citrullin> pb: tbf, you can use a customized app for it which supports 1.3.
12:33:43 <citrullin> mm: iPhone might be an issue here though. They force you to use webkit.
12:34:26 <citrullin> mm: Should we add an editors note here?
12:34:43 <citrullin> pb: I think that is a good idea.
12:36:44 <citrullin> mm adds a comment to issue 13
12:36:48 <citrullin> issue 13 -> https://github.com/w3c/wot-security-best-practices/issues/13
12:42:11 <kaz> s/streight/straight/
12:44:27 <citrullin> op: We have a much more mature ecosystem for netconf/yang WG in the IETF.
12:47:24 <citrullin> mm: Any objections to merge 21?
12:47:30 <citrullin> ... no objections.
12:49:16 <McCool> https://github.com/w3c/wot-security/issues/201
12:49:31 <citrullin> mm: The scripting people have some issues we should address.
12:53:11 <citrullin> mm: Maybe we can look into DID to distribute keys.
12:57:41 <kaz> [adjourned]
12:57:47 <kaz> rrsagent, make log public
12:57:51 <kaz> rrsagent, draft minutes
12:57:51 <RRSAgent> I have made the request to generate https://www.w3.org/2021/07/19-wot-sec-minutes.html kaz
13:03:14 <zkis> zkis has joined #wot-sec
13:29:17 <kaz> kaz has joined #wot-sec
14:17:00 <Zakim> Zakim has left #wot-sec
15:16:20 <kaz> kaz has joined #wot-sec
15:28:36 <zkis> zkis has joined #wot-sec
17:33:01 <zkis> zkis has joined #wot-sec
18:35:57 <zkis> zkis has joined #wot-sec