20:02:29 RRSAgent has joined #webauthn 20:02:33 logging to https://www.w3.org/2024/03/06-webauthn-irc 20:02:36 Zakim has joined #webauthn 20:04:17 present+ MikeJones,TonyNadalin,NickSteele,NinaSatragno,MatthewMiller,JohnPascoe,TimCappalli,PLH,EmilLundberg,DavidTurner,JohnSchanck.JamesZhang,RolfLindemann,ShaneWeeden,DavidTurner 20:04:40 Chair: TonyNadalin 20:04:43 Scribe: steele 20:04:54 TOPIC: Face to Face 20:05:31 AGL: We have a venue, it's near the Internet History Museum (the venue for IIW) on April 19th 20:05:42 ... On the Google campus 20:06:12 MikeJones: OpenID is also meeting that morning on the Google campus, presents a conflict for John and I in the morning 20:06:34 present+ GarrettDavidson,JohnBradley,AndersAberg 20:06:50 AGL: All the details provided should be in an email sent to the list 20:07:18 present+ Simone 20:08:23 q+ 20:09:27 TOPIC: Charter 20:11:22 Simone: Proposes an addendum to the pending charter that includes a formality section regarding security topics (risks, threat modeling, etc). This should be in the template provided. 20:11:53 Simone: The security topics such as the threat model is already included in the specification, so we could reuse that 20:12:15 Tony can work with Simone to reformat the draft to include this 20:13:24 TOPIC: Pull Requests 20:14:29 https://github.com/w3c/webauthn/issues/2022 20:14:40 Discussion with Rolf 20:16:24 There are financial regulatory and fraud concerns that compel this work 20:17:34 Discussion of different solutions that could exist to solve this issue 20:29:52 scribe+ 20:30:13 John: important to have another browser than chrome to support it 20:31:07 Rolf: from a regulatory perspective, the authenticator needs to display it, not the platform 20:34:24 elundberg has joined #webauthn 20:34:41 scribenick: elundberg 20:37:28 elundberg: there would be value in keeping the name if it can be backwards compatible with existing authenticator implementations 20:38:16 MatthewMiller: we should change the name, txAuthSimple isn't very descriptive 20:38:22 TimCappalli: or accurate, necessarily 20:39:13 elundberg: short extension ID is preferable because it's reflected in CBOR on the wire, some message size limits are as low as ~1KB 20:39:20 steele has joined #webauthn 20:39:31 TimCappalli: there should be a "type" attribute or similar at least 20:40:22 nadalin: hearing mixed feelings about this proposal 20:41:02 jbradley: how much do we want to expand the scope 20:41:24 TimCappalli: we should hear from banks that they understand this will be inconsistent between platforms 20:41:40 ...I suspect they will deem it not useful due to inconsistency 20:45:14 RolfLindemann: I've heard a need for this capability for many use cases 20:46:22 nadalin: adjourn 20:46:46 Zakim, list participants 20:46:46 As of this point the attendees have been MikeJones, TonyNadalin, NickSteele, NinaSatragno, MatthewMiller, JohnPascoe, TimCappalli, PLH, EmilLundberg, DavidTurner, 20:46:49 ... JohnSchanck.JamesZhang, RolfLindemann, ShaneWeeden, GarrettDavidson, JohnBradley, AndersAberg, Simone 20:47:01 RRSAgent, make logs public 20:47:10 RRSagent, generate minutes 20:47:11 I have made the request to generate https://www.w3.org/2024/03/06-webauthn-minutes.html elundberg 20:47:18 RRSAgent, generate minutes 20:47:19 I have made the request to generate https://www.w3.org/2024/03/06-webauthn-minutes.html elundberg 20:47:25 Zakim, bye 20:47:25 leaving. As of this point the attendees have been MikeJones, TonyNadalin, NickSteele, NinaSatragno, MatthewMiller, JohnPascoe, TimCappalli, PLH, EmilLundberg, DavidTurner, 20:47:25 Zakim has left #webauthn 20:47:27 ... JohnSchanck.JamesZhang, RolfLindemann, ShaneWeeden, GarrettDavidson, JohnBradley, AndersAberg, Simone 20:47:33 RRSAgent, bye 20:47:33 I see no action items