Meeting minutes
Minutes review
McCool: I don't see any issues. Any comments or objections?
McCool: We discussed the signature and key topic in the TD call as well.
… no objections. Minutes get published.
Signatures
<kaz> wot-security-best-practices Issue 14 - TD Signatures, Key Management, and Object Security
<kaz> related wot-thing-description Issue 1151 (which is already closed) - WIP: TD Signatures
McCool: Kaz has done the first action item. I haven't done the second one yet. My next step to make a PR for signature. The content is already there, it just need to get migrated.
McCool: I think we should reach out before the F2F.
McCool: I just updated the readme. I merge it.
McCool: We should have a link to github.io in the readme.
McCool adds the link to the readme.
McCool: It will not work for now, I am going to add the index.html for it.
Contributions
McCool: Philipp, if you can add a contribution to wot-security-best-practices document's Acknowledgements section, that would be good.
Philipp: Will do.
TD Signatures, Key Management and Object security
McCool: We should look into COSE, JOSE. We haven't played with it much yet.
wot-security-best-practices Issue 14
McCool adds a comment to the issue.
Jan: If we use multicast in coap, we also have the problem with unencrypted traffic.
McCool explains some of the security issues to jr.
McCool: We have a section in the best practice document for the thing description directories.
McCool: Our short term goal is to get the security best practice document in a state we can publish it.
<McCool> https://
Some explanation about the current state of IoT security and issues we have to solve. (for jr)
<kaz> [adjourned]