[Openid-specs-mobile-profile] MODRNA WG @ Tue Feb 2, 2021 7am - 8am (PST) preliminary minutes

PABLO GUIJARRO ENRIQUEZ pablo.guijarroenriquez at telefonica.com
Tue Feb 2 17:41:31 UTC 2021

Hi Philippe,

Just an update on the action points for the CIBA Core issue #197: Bjorn to email the list for looking at this issue. Pablo to add comments to this issue. Leave open.

Since the message posted by Joseph some minutes ago already includes the main concerns expressed during the call today, including mine, I will not add more comments for the moment.


De: Openid-specs-mobile-profile <openid-specs-mobile-profile-bounces at lists.openid.net> En nombre de philippe.clement at orange.com
Enviado el: martes, 2 de febrero de 2021 18:20
Para: bjorn.hjelm at verizonwireless.com; torsten at lodderstedt.net; openid-specs-mobile-profile at lists.openid.net; ghazari at gsma.com; Dave Tonge <dave.tonge at moneyhub.com>; joseph.heenan at fintechlabs.io; Brian Campbell <bcampbell at pingidentity.com>
Asunto: [Openid-specs-mobile-profile] MODRNA WG @ Tue Feb 2, 2021 7am - 8am (PST) preliminary minutes

Dear all,

Please find below the minutes of our MODRNA call on  Tue Feb 2, 2021. Please let me know of any error or misunderstanding

  1.  Roll Call
Philippe Clement, Bjorn Hjelm (Verizon), Joseph Heenan (OIF), Pablo Guijarro (TEF), Hubert Mariotte (Orange), Dave Tonge, Nat Sakimura, Charles Marais (Orange), Martin Drewes (enabled WORLD), Nat Sakimura (OIF)

  1.  Adoption of the Agenda [Bjorn/John]

  1.  External Organizations
In the last meeting yesterday, a majority of MNO wanted to keep technical work in GSMA.
Next step is to determine how to build the cooperation between OIF and GSMA. This may address  MODRNA, FAPI, eKYC... A workshop to schedule.

  1.  Events
  2.  Specification Status
  3.  OpenID Certification<https://openid.net/certification/> for MODRNA
Joseph mentions the modifications to the main page. 5 tabs are introduced to distinguish providers and relying parties: https://openid.net/certification/#FAPI-CIBA_OPs<https://openid.net/certification/>
Launched FAPI certification for Australian CDR.

  1.  Issue Tracker
User Questioning API<https://bitbucket.org/openid/mobile/issues?status=new&status=open&component=UQAPI> [Nicolas/Charles/James]
Charles: Pull Requests (PR) have been written for the different issues, not finished yet.
#194: https should be required for user_questioning_request_endpoint/user_questioning_request_endpoint<https://bitbucket.org/openid/mobile/issues/194/https-should-be-required-for>
PR#5 issue194 - HTTPS is required<https://bitbucket.org/openid/mobile/pull-requests/5>
#195: normative references links to draft jwt standard<https://bitbucket.org/openid/mobile/issues/195/normative-references-links-to-draft-jwt>
PR#8 issue195 - Updated references<https://bitbucket.org/openid/mobile/pull-requests/8>

  *   Joseph to take a look at the PR offline.
#196: iana registrations for JWT Claims / discovery info<https://bitbucket.org/openid/mobile/issues/196/iana-registrations-for-jwt-claims>
PR#9 Issue196 - Updated IANA registrations<https://bitbucket.org/openid/mobile/pull-requests/9>
The next steps for IANA is to make a submission.

  *   Bjorn to reach to Mike Jones.
#193: typ header for User Statement Token / potential for confusion with id_token<https://bitbucket.org/openid/mobile/issues/193/typ-header-for-user-statement-token>
PR#7 issue193 - typ:"UST" for User Statement Token<https://bitbucket.org/openid/mobile/pull-requests/7>
PR#10 issue193 - typ:"UST" and no iat, exp or nonce<https://bitbucket.org/openid/mobile/pull-requests/10>

  *   Charles to check with Nicolas the need for 2 separate PRs.
  *   Other MODRNA people invited to check the Pull Requests.

MODRNA CIBA Profile<https://bitbucket.org/openid/mobile/issues?status=new&status=open&component=MODRNA%20Profile%20CIBA> [Dave/Gonzalo/Axel]
#178: Modes supported<https://bitbucket.org/openid/mobile/issues/178/modes-supported>
Questions arise for positioning this issue in the CIBA core or MODRNA CIBA profile.

  *   Bjorn to transfer issue #178 to the CIBA core.

CIBA Core<https://bitbucket.org/openid/mobile/issues?status=new&status=open&component=CIBA> [Dave/Brian/Gonzalo/Axel]
#197: Clearer Binding Message Verification<https://bitbucket.org/openid/mobile/issues/197/clearer-binding-message-verification>
Difficult to know the capabilities of consumption and authentication devices.
Needs some more thoughts.

  *   Bjorn to email the list for looking at this issue. Pablo to add comments to this issue. Leave open.

  1.  AOB

  *   Hubert: Mentions the document concerning PCR at GSMA. We asked GSMA to update portal. Remarks provided by Pablo. Feedback intended for GSMA.

  *   Hubert to copy Bjorn for the validation that MODRNA group reviewed.

  *   Nat mentions a call for contribution to the SSR: Security Standardization Research: http://ssresearch.eu/

  *   All OIF members can contribute with a paper.

Best regards,


Ce message et ses pieces jointes peuvent contenir des informations confidentielles ou privilegiees et ne doivent donc

pas etre diffuses, exploites ou copies sans autorisation. Si vous avez recu ce message par erreur, veuillez le signaler

a l'expediteur et le detruire ainsi que les pieces jointes. Les messages electroniques etant susceptibles d'alteration,

Orange decline toute responsabilite si ce message a ete altere, deforme ou falsifie. Merci.

This message and its attachments may contain confidential or privileged information that may be protected by law;

they should not be distributed, used or copied without authorisation.

If you have received this email in error, please notify the sender and delete this message and its attachments.

As emails may be altered, Orange is not liable for messages that have been modified, changed or falsified.

Thank you.


Este mensaje y sus adjuntos se dirigen exclusivamente a su destinatario, puede contener información privilegiada o confidencial y es para uso exclusivo de la persona o entidad de destino. Si no es usted. el destinatario indicado, queda notificado de que la lectura, utilización, divulgación y/o copia sin autorización puede estar prohibida en virtud de la legislación vigente. Si ha recibido este mensaje por error, le rogamos que nos lo comunique inmediatamente por esta misma vía y proceda a su destrucción.

The information contained in this transmission is privileged and confidential information intended only for the use of the individual or entity named above. If the reader of this message is not the intended recipient, you are hereby notified that any dissemination, distribution or copying of this communication is strictly prohibited. If you have received this transmission in error, do not read it. Please immediately reply to the sender that you have received this communication in error and then delete it.

Esta mensagem e seus anexos se dirigem exclusivamente ao seu destinatário, pode conter informação privilegiada ou confidencial e é para uso exclusivo da pessoa ou entidade de destino. Se não é vossa senhoria o destinatário indicado, fica notificado de que a leitura, utilização, divulgação e/ou cópia sem autorização pode estar proibida em virtude da legislação vigente. Se recebeu esta mensagem por erro, rogamos-lhe que nos o comunique imediatamente por esta mesma via e proceda a sua destruição
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-mobile-profile/attachments/20210202/7e43bb93/attachment-0001.html>

More information about the Openid-specs-mobile-profile mailing list