[Openid-specs-ab] [Aug-03-2023] SIOP Special Topic Call Notes

[Kristina Yasuda]

Thank you Nander for taking notes!!


08/03/2023
Today's agenda:
* Torsten sent out email about new credentials workinggroup, please take a look at that!
* Please also show your support on IETF
* security workshop is coming up, registration is open until August 12th (make sure to register in time)

PRs
https://bitbucket.org/openid/connect/pull-requests/557:
* pretty much ready
* discussion about whether to rename some parameters
* Will be merged after conflicts are resolved

https://bitbucket.org/openid/connect/pull-requests/571:
* transaction_id should only be used once, after that it should result in an error code.

https://bitbucket.org/openid/connect/pull-requests/241
* Open for over a year, can we close it?
* linked to Issue https://bitbucket.org/openid/connect/issues/1578/add-schema-to-op-metadata
* Since there has no progress for over a year this PR can be closed and potential further discussion can be continued in the Issue

https://bitbucket.org/openid/connect/pull-requests/455
* Has three approvals already
* TRAIN client id scheme: verifier can check if an issuer is in a specific trust list
* https://publica.fraunhofer.de/entities/publication/a71d3c94-b44b-4005-87e9-4bc4c780b248/details
* will reach out to Isaac, we will wait with merging this PR for now.

https://bitbucket.org/openid/connect/pull-requests/586
* Please review this PR

https://bitbucket.org/openid/connect/pull-requests/587
* A PR to simplify Trust Schemes


Issues
https://bitbucket.org/openid/connect/issues/1923/oid4vci-enable-issuance-of-the-same:
* Discussion about how to communicate the difference between two credentials of the same type, e.g. by adding identifiers in the authorization_details objects of the Token Response

https://bitbucket.org/openid/connect/issues/1969/wallet-instance-attestation-for-openid4vci:
* Some discussion about privacy

https://bitbucket.org/openid/connect/issues/1964/size-of-a-credential-issuer-metadata:
* Issuer metadata can become huge since credentials are supposed to be able to support multiple different languages defined in the `display` parameter.
* Kristina described a 'hack': credential offer is a credential offer URI that can be used to fetch the offer object.


General comments:
Please checkout and comment on open standing Issues and close Issues that have been resolved










-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20230810/1aa43815/attachment-0001.html>