13:49:04 RRSAgent has joined #lws 13:49:08 logging to https://www.w3.org/2025/09/15-lws-irc 13:49:08 RRSAgent, make logs Public 13:49:09 please title this meeting ("meeting: ..."), laurens 13:49:17 meeting: Linked Web Storage WG -- 2025-09-15 13:49:24 agenda: https://www.w3.org/events/meetings/a19ab7dc-1753-433d-bac5-64e3ad8c0a43/20250915T100000/ 13:49:24 clear agenda 13:49:24 agenda+ Introductions & Announcements 13:49:24 agenda+ Action items 13:49:24 agenda+ Prioritization of use cases 13:49:24 agenda+ Face-to-face meeting agenda 13:49:46 Chair: laurens 13:56:18 acoburn has joined #lws 13:56:58 regrets+ 13:59:16 acoburn has changed the topic to: Linked Web Storage -- 2025-09-15: https://www.w3.org/events/meetings/a19ab7dc-1753-433d-bac5-64e3ad8c0a43/20250915T100000/ 13:59:27 zakim, start meeting 13:59:27 RRSAgent, make logs Public 13:59:29 please title this meeting ("meeting: ..."), acoburn 13:59:33 meeting: Linked Web Storage 13:59:42 uvdsl has joined #lws 13:59:49 agenda: https://www.w3.org/events/meetings/a19ab7dc-1753-433d-bac5-64e3ad8c0a43/20250915T100000/#agenda 13:59:49 clear agenda 13:59:49 agenda+ Introductions & Announcements 13:59:49 agenda+ Action items 13:59:49 agenda+ Prioritization of use cases 13:59:49 agenda+ Face-to-face meeting agenda 14:00:57 gibsonf1 has joined #lws 14:00:58 present+ 14:01:03 present+ 14:01:47 bendm has joined #lws 14:01:56 eBremer has joined #lws 14:02:05 scribe+ 14:02:07 present+ 14:02:12 present+ 14:02:12 RRSAgent, make minutes 14:02:13 I have made the request to generate https://www.w3.org/2025/09/15-lws-minutes.html acoburn 14:02:22 present+ 14:02:22 present+ 14:03:34 bartb has joined #lws 14:03:52 present+ 14:04:09 laurens: Sent out information on f2f meeting and put items on W3C calendar - also indicate attendance there would be great 14:04:19 zakim, open agendum 1 14:04:19 agendum 1 -- Introductions & Announcements -- taken up [from agendabot] 14:05:09 pchampin: TPAC open to demos to all WGs - maybe someone has ideas 14:05:18 present+ 14:05:34 zakim, open agendum 2 14:05:34 agendum 2 -- Action items -- taken up [from agendabot] 14:06:03 dmitriz has joined #lws 14:06:27 zakim, open agendum 3 14:06:27 agendum 3 -- Prioritization of use cases -- taken up [from agendabot] 14:06:37 laurens: closed action item for https://github.com/w3c/lws-ucs/issues/215#issuecomment-3292271222 14:06:37 https://github.com/w3c/lws-ucs/issues/215 -> Issue 215 [UC] Mechanism to access a resource identifier in a storage with identifier that points to a different storage (by gibsonf1) [triage] [usecase] 14:08:06 acoburn: LWS requirements survey. Gives a sense of where people stand. Want to set up a must have requirments bucket, and secondly a nice to have bucket, and finally, a set these aside for now bucket 14:08:26 ryey has joined #lws 14:08:30 present+ 14:09:20 q+ to ask about number 3 vs 5 14:10:19 ... This is just an initial cut to start focus on most important for f2f meeting next month. 14:10:53 bendm: Was hard to decide on difference between 3 and 5 rating for survey. 14:11:48 acoburn: +1 = focus -1 = out of scope 14:12:13 acoburn: Globally unique identifiers 14:12:18 +1 14:12:28 -> https://w3c.github.io/lws-ucs/spec/#dfn-globally-unique-identifiers Globally Unique IDs 14:12:38 RazaN has joined #lws 14:13:12 +1 14:13:12 +1 14:13:13 +1 14:13:13 +1 14:13:14 +1 14:13:16 acoburn: If you think spec should include Globally unique identifiers, please vote now 14:13:16 +1 14:13:19 +1 14:13:24 +1 14:13:44 +0.5 14:15:02 pchampin: start with strawpoll: for voting 14:15:52 s/acoburn: Globally unique identifiers/STRAWPOLL: Globally unique identifiers 14:16:15 -> https://w3c.github.io/lws-ucs/spec/#dfn-use-of-service-providers Use of Service Providers 14:16:19 STRAWPOLL: Use of Service Providers 14:16:35 +1 14:16:37 +1 14:16:44 +1 14:16:47 +1 14:16:49 +1 14:16:50 -0 (I don't understand this requirement at all) 14:16:56 +1 14:16:57 +1 14:16:58 RazaN has joined #lws 14:18:29 acoburn: has to do with trust relationships between different entities. What normative text do we agree on in spec. To focus on priorities 14:18:30 +0 14:18:38 -> https://w3c.github.io/lws-ucs/spec/#dfn-control-of-storages Control of Storages 14:18:48 STRAWPOLL: Control of Storages 14:18:54 +1 14:19:03 +1 14:19:05 +1 14:19:07 +1 14:19:07 +1 14:19:09 +1 14:19:10 +1 14:19:21 -1 (for the 'Exactly 1 controller' part) 14:19:40 but seems like a fine feature otherwise. 14:19:41 +1 14:19:55 +1 14:20:06 -> https://w3c.github.io/lws-ucs/spec/#dfn-delegation-of-control Delegation of Control 14:20:06 STRAWPOLL: Delegation of Control 14:20:18 dmitriz it's mentioned that there could be a group of controllers too, so I'm giving it a benefit of a doubt :) 14:20:25 +1 14:20:27 +1 14:20:29 +1 14:20:31 +1 14:20:32 +1 14:20:33 +1 14:20:34 -0 14:20:35 +1 14:20:47 +1 14:20:50 +1 14:21:04 -> https://w3c.github.io/lws-ucs/spec/#dfn-transfer-of-control Transfer of Control 14:21:05 STRAWPOLL: Transfer of Control 14:21:10 +0 14:21:12 +0 14:21:14 -1 14:21:17 +1 14:21:19 +1 14:21:22 +1 14:21:24 The difference between the two is very vague to me 14:21:24 +0 14:21:25 -0 14:21:54 -> https://w3c.github.io/lws-ucs/spec/#dfn-storage-portability Storage Portability 14:22:01 STRAWPOLL: Storage Portability 14:22:07 +1 14:22:09 +1 14:22:10 +1 14:22:12 +1 14:22:15 -1 14:22:15 +1 14:22:18 +1 (but needs proper scoping) 14:22:25 +1 14:22:28 +1 (more scoping, but itself is needed) 14:22:49 -> https://w3c.github.io/lws-ucs/spec/#dfn-adding-updating-deleting-resources-in-storage Adding Updating Deleting Resources in Storage 14:22:51 STRAWPOLL: Adding, Updating, Deleting Resources in Storage 14:22:53 +1 14:22:53 +1 14:22:56 +1 14:22:58 +1 14:23:00 +1 14:23:01 +1 14:23:03 +1 14:23:03 +1 14:23:05 +1 (tho this seems like an odd one - maybe too obvious?) 14:23:19 +1 14:23:27 -> https://w3c.github.io/lws-ucs/spec/#dfn-data-sharing Data Sharing 14:23:27 STRAWPOLL: Data Sharing 14:23:35 +1 14:23:37 +1 14:23:37 +1 14:23:37 +1 14:23:38 +1 14:23:38 +1 14:23:40 +1 14:23:45 +1 14:23:53 +1 14:23:59 -> https://w3c.github.io/lws-ucs/spec/#dfn-auditable-trail Auditable Trail 14:24:04 STRAWPOLL: Auditable Trail 14:24:06 -1 14:24:08 +0 14:24:11 +0 14:24:11 -1 14:24:12 +0 14:24:13 -1 14:24:16 +1 14:24:19 -1 14:24:25 +0 (I think the main spec needs to provide hook/affordance, but not specify) 14:24:25 -1 (some part may be useful, but this thing as a whole is not for now) 14:25:13 STRAWPOLL: Serialization Format 14:25:13 -> https://w3c.github.io/lws-ucs/spec/#dfn-serialization-format Serialization Format 14:25:17 +1 14:25:19 +1 14:25:20 +1 14:25:21 +1 14:25:24 +1 14:25:24 +1 14:25:28 +1 14:25:30 -0 (don't quite understand this one..) 14:25:35 q+ 14:25:45 ack bendm 14:25:45 bendm, you wanted to ask about number 3 vs 5 and to 14:26:00 bendm: Not clear whether this implies content negotiation or just serialize data in any way 14:26:52 acoburn: doubtful that any data any way (too broad), but some clear expectation around how certain resources are serialized. For example, containers require at least one required serialization format. 14:27:07 FTR, the discussion we had about this req https://www.w3.org/2025/08/11-lws-minutes.html#1c61 14:27:24 -> https://w3c.github.io/lws-ucs/spec/#dfn-offline-access-and-synchronization Offline Access and Synchronization 14:27:24 STRAWPOLL: Offline Access and Synchronization 14:27:36 -0 14:27:36 -1 14:27:44 -1 14:27:45 +0.5 (I think spec should provide hooks/affordance, but we likely won't get enough time to standardize this. but it IS important.) 14:27:57 -0 14:27:58 +0 (good to have something prepared for that, but not as core spec) 14:27:58 -1 14:28:04 +0 14:28:06 +0 14:28:11 -1 14:28:33 -> https://w3c.github.io/lws-ucs/spec/#dfn-resumable-large-data-transfers Resumable Large Data Transfers 14:28:33 STRAWPOLL: Resumable Large Data Transfers 14:28:37 +1 14:28:37 +1 14:28:37 -0 14:28:38 +1 14:28:40 +0 14:28:44 +0 14:28:48 -1 14:28:48 +0 14:29:18 -> https://w3c.github.io/lws-ucs/spec/#dfn-resource-versioning Resource Versioning 14:29:18 STRAWPOLL: Resource Versioning 14:29:21 +1 14:29:23 +1 14:29:26 +0 14:29:27 +0 14:29:31 +0.5 (hooks/affordance) 14:29:31 -1 (memento already does this) 14:29:31 +0 14:29:33 -1 14:29:48 -1 14:29:54 -1 (good to have hooks; but not as a whole) 14:30:06 -> https://w3c.github.io/lws-ucs/spec/#dfn-subscribing-to-resource-changes-notifications Subscribing to resource changes 14:30:07 STRAWPOLL: Subscribing to Resource Changes 14:30:12 +1 14:30:12 +1 14:30:16 +1 14:30:17 +1 14:30:17 +1 14:30:17 +1 14:30:18 +1 14:30:24 +0 14:30:25 +1 14:30:31 +1 14:30:47 q? 14:30:48 -> https://w3c.github.io/lws-ucs/spec/#dfn-access-request-handling Access Request Handling 14:30:49 STRAWPOLL: Access Request Handling 14:30:50 +1 14:30:51 +1 14:30:57 +1 14:30:57 +1 14:31:01 +0 14:31:03 +0.5 14:31:06 +0 14:31:07 +0 14:31:09 +0.5 14:31:11 +1 14:31:26 -> https://w3c.github.io/lws-ucs/spec/#dfn-delegation-of-access-rights Delegation of Access Rights 14:31:26 STRAWPOLL: Delegation of Access Rights 14:31:29 +0 14:31:39 +1 14:31:42 +1 14:31:45 +1 (though this is a repeat of earlier items) 14:31:46 +1 14:31:52 +1 14:31:53 +0 14:31:54 +1 14:32:02 +1 14:32:16 -> https://w3c.github.io/lws-ucs/spec/#dfn-contextual-access-control Contextual Access Control 14:32:17 STRAWPOLL: Contextual Access Control 14:32:19 -1 14:32:20 q+ 14:32:29 +1 14:32:34 ack gibsonf1 14:33:26 -0 (dynamic group access affordance might be sufficient for now) 14:33:27 ack g 14:33:41 +1 14:33:52 +1 14:33:52 +1 14:33:57 -1 14:34:01 +0 14:34:08 +1 14:34:19 +0 14:34:27 STRAWPOLL: Inbox (notifications) 14:34:31 -> https://w3c.github.io/lws-ucs/spec/#dfn-inbox-notifications Inbox Notifications 14:34:32 +1 14:34:35 +0 14:34:41 -1 14:34:43 +0 14:34:45 -1 14:34:50 -1 14:34:51 -1 (seems like duplicating ActivityPub) 14:35:02 +0.5 (either this, or some similar mechanisms) 14:35:09 +0.5 14:35:21 -> https://w3c.github.io/lws-ucs/spec/#dfn-search-and-query Search and Query 14:35:21 STRAWPOLL: Search and Query 14:35:22 +1 14:35:28 +1 14:35:33 +0 14:35:33 +1 14:35:35 +1 (but we will need to scope this carefully) 14:35:37 +0 14:35:48 +1 (agree with acoburn) 14:35:48 +1 (needs more scoping, but yes in general) 14:35:55 +0.5 (this could be very complex if not scoped well) 14:36:10 +1 14:36:12 -> https://w3c.github.io/lws-ucs/spec/#dfn-self-descriptive-and-discoverable-apis Self-descriptive APIs 14:36:13 STRAWPOLL: Self-Descriptive and Discoverable APIs 14:36:16 +1 14:36:16 +1 14:36:17 +1 14:36:17 +1 14:36:18 +1 14:36:23 +1 14:36:25 -1 14:36:25 +1 14:36:32 +1 14:36:44 +1 14:36:54 -> https://w3c.github.io/lws-ucs/spec/#dfn-end-to-end-encryption-0 End-to-End Encryption 14:36:57 STRAWPOLL: End-to-end Encryption 14:37:00 +1 14:37:01 +1 14:37:15 -1 14:37:20 +0 14:37:27 +0 (too many details to consider; doesn't have to be server spec if proven difficult) 14:37:28 +0 (really important but not a core requirement) 14:37:28 -1 14:37:36 +0 14:37:36 +0 14:37:37 -1 14:37:43 +1 14:37:45 s/doesn't have to be server spec if proven difficult/doesn't have to be core spec if proven difficult 14:38:00 -> https://w3c.github.io/lws-ucs/spec/#dfn-data-integrity-verification Data Integrity Verification 14:38:01 STRAWPOLL: Data Integrity Verification 14:38:01 the problem is, E2EE _affects_ the core spec 14:38:03 +1 14:38:24 -1 14:38:25 +1 14:38:29 q+ 14:38:30 +0 14:38:35 q+ 14:38:36 +0 14:38:42 +1 14:38:49 +0 (perhaps digest headers minimally) 14:38:54 q? 14:38:56 ack bendm 14:39:04 +0 (Important but possibly handled by existing IETF specs) 14:39:14 q+ 14:39:22 bendm: more info on key management Dimitry please? 14:40:32 dmitriz: Pattern with Storage projects is leave out of scope because its hard, but need affordance for it in core spec so its not impossible down the road. 14:41:20 q? 14:41:21 ... a flexible affordance like auxiliary resources (read about encrypted data vaults) to keep in mind whats involved 14:41:26 ack ryey 14:42:07 Encrypted Data Vaults : https://identity.foundation/edv-spec/ 14:42:44 ryey: I see 2 interpretations: 1. Verify data retrieved is same as one in storage (data transfer is correct), or 2. Verify data stored in storage is same as data originally stored in storage. Which one? 14:43:32 Digest Fields (Headers): https://www.rfc-editor.org/rfc/rfc9530 14:44:24 acoburn: I think existing IETF specs around digest header which allows read and write verification - using a checksum. On read client can verify checksum matches server checksum for resource 14:45:42 this is fairly easily solved by including the digest hash in the original URL, and passing to Charlie 14:46:00 ryey: That answers 1, but for 2. - can I get a proof of this. Alice stores data in Bob's storage, Charlie reads that data, Charlie needs proof that data was originally stored and is same as put in by Alice 14:47:19 ryey: Voting to include or make new invention on this? 14:47:50 q+ 14:48:11 laurens: Its to incorporate existing work or not in the LWS spec, not new inventions 14:48:15 ack dmitriz 14:48:25 q- 14:48:27 ack pchampin 14:49:19 pchampin: +1 is to require a requirement in LWS, not necessarily something new. Providing affordances to make possible = +0 14:50:05 laurens: It might be in the wording of requirement causing interpretation issues 14:50:32 pchampin: The work required by implentors is another dimension 14:50:35 q? 14:50:46 +1 14:50:46 -> https://w3c.github.io/lws-ucs/spec/#dfn-consent-based-data-sharing Consent-based data sharing 14:50:48 STRAWPOLL: Consent-Based Data Sharing 14:50:49 I was doing the same as pchampin 14:50:52 +1 14:51:02 -1 14:51:03 +1 14:51:06 +0 14:51:08 +0.5 (I suspect this is a layer above LWS, application-level) 14:51:08 +0 14:51:15 +1 14:51:16 +1 14:51:19 +0 14:51:36 -0 (not necessarily, as consent can be a complicated legal thing; do in application.) 14:51:43 -> https://w3c.github.io/lws-ucs/spec/#dfn-legal-basis-enforcement Legal Basis Enforcement 14:51:44 STRAWPOLL: Legal Basis Enforcement 14:51:47 -1 14:51:49 -1 14:51:54 -1 14:51:56 -1 14:51:56 -1 14:51:56 -1 14:51:58 -0 (similar to above) 14:52:05 -1 (Important implementation consideration, but out of scope for the spec) 14:52:05 -1 (this kind of all depends on whether we do audit trail) 14:52:13 -1 14:52:30 STRAWPOLL: Authentication Mechanisms 14:52:31 -> https://w3c.github.io/lws-ucs/spec/#dfn-authentication-mechanisms Authentication Mechanisms 14:52:32 +1 14:52:36 +1 14:52:37 q+ 14:52:38 +1 14:52:40 +1 14:52:41 +1 14:52:48 +1 14:52:48 +1 14:52:54 ack ryey 14:53:22 ryey: I would vote +1 but not sure exact requirement 14:53:23 +1 14:53:53 +1 14:53:56 acoburn: Actual text in requirement we can debate and decide and scope - whether self-soverign is part we can all agree later 14:54:20 -> https://w3c.github.io/lws-ucs/spec/#dfn-trusted-identity-providers Trusted Identity Providers 14:54:21