[Openid-specs-ab] Spec call notes 7-Mar-16

Edmund Jay ejay at mgi1.com
Tue Mar 8 00:16:28 UTC 2016

Spec call notes 5-Oct-15

John BradleyNat Sakimura
Edmund Jay

Agenda     Issues
    RP Testing

Issues    There are no new issues    John is still working on closing his assigned issues for the errata

RP Testing   Edmund had meeting with Roland regarding key rotation tests   Roland has made fixes and Edmund is in process of verifying

Events             OpenID Workshop in Santiago on Thursday, March 31 before IETF 95 in Buenos Aires
                             See  http://www.alive.cl/clientes/OpenID/index.html                             John, Nat, Mike, William, and Hannes will be there                             The city of Buenos Aires has a Python authorization server - Django OpenID provider
             Another meeting is schedule the next day at Google's offices              Agenda could be the following:             - work on attack mitigation for OAuth and OpenID Connect             - Nat may try reconciliation of differences between Nov's and Google's spec for javascript binding/implicit flow              - talk about OAuth architecture as a whole to prevent attacks             - rework proof of possession. current spec may be too complicated for developers               John is thinking about using token binding with the TLS session                   
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-ab/attachments/20160308/989d8e5c/attachment.html>

More information about the Openid-specs-ab mailing list