[Openid-specs-mobile-profile] MODRNA WG on Jan 22nd 2019 preliminary minutes

philippe.clement at orange.com philippe.clement at orange.com
Tue Jan 22 16:02:11 UTC 2019

Dear all,

Please find below the preliminary minutes of our MODRNA call on Jan 22nd 2019.
In any case of error or misunderstanding, please let me know.

Roll Call
Bjorn Hjelm, Philippe Clement (Orange), Geoffrey Graham, Jörg (DT), Joseph Heenan, Petteri (Ubisecure), John Bradley

Adoption of the Agenda [Bjorn/John]

External Organizations

  GSMA [Siva]
Not addressed

Working Group Updates

  FAPI WG [Dave]
Joseph : still a few remaining things to tidy up. Feedback from banking awaited next week.

Spec. Status

  CIBA  Core/MODRNA Profile [Dave/Brian/Gonzalo/Axel]
*       CIBA Core relevant dates:
*       Implementer's Draft voting period: Monday, January 21, 2019 - Monday, February 4, 2019
*       https://openid.net/foundation/members/polls/166.

==>     Call for voting to MODRNA members

  MODRNA Profile status.
  Authentication Profile [Joerg]
Addressed in issue tracker

Issue Tracker
*       MODRNA CIBA Profile<https://bitbucket.org/openid/mobile/issues?status=new&status=open&component=MODRNA%20Profile%20CIBA>  [Dave/Brian/Gonzalo/Axel]
*       Authentication Profile<https://bitbucket.org/openid/mobile/issues?status=new&status=open&component=Authentication> [Joerg]

#32: Mobile Registration : napps application type<https://bitbucket.org/openid/mobile/issues/32/mobile-registration-napps-application-type>
==>     Joerg proposes to close. Agreed by the group.

#33: modrna as an Individual Claim request parameter proposal in draft-mobile-authentication-01.txt<https://bitbucket.org/openid/mobile/issues/33/modrna-as-an-individual-claim-request>
==>     To be closed

#22: Service provider wants to get authorization for a certain transaction<https://bitbucket.org/openid/mobile/issues/22/service-provider-wants-to-get>
Addressed in User Questioning
==>     To be closed

#38: How to introduce authentication strength?<https://bitbucket.org/openid/mobile/issues/38/how-to-introduce-authentication-strength>
Update to do to the text, reference to the RFC8166 is sufficient.
==>     To be closed.

#43: Additional security considerations/mitigations regarding phishing of OOB authentication<https://bitbucket.org/openid/mobile/issues/43/additional-security-considerations>
==>     John to comment.
To be reviewed next call

#61: Please provide more examples, potentially with Swagger representation<https://bitbucket.org/openid/mobile/issues/61/please-provide-more-examples-potentially>
Any other similar examples to point to ?
==>     to be closed at the next call

==>     Bjorn to send an email to the group to know of any deployment of the spec.

Next call to view if any problem with DT Poland deployment (Jörg)
Then we can move the spec to the publication status.

*       CIBA Core<https://bitbucket.org/openid/mobile/issues?status=new&status=open&component=CIBA> (Post-Implementer's Draft) [Dave/Brian/Gonzalo/Axel]


Best regards,


Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc
pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler
a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,
Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.

This message and its attachments may contain confidential or privileged information that may be protected by law;
they should not be distributed, used or copied without authorisation.
If you have received this email in error, please notify the sender and delete this message and its attachments.
As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.
Thank you.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-mobile-profile/attachments/20190122/c862c141/attachment.html>

More information about the Openid-specs-mobile-profile mailing list