<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri",sans-serif;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="#0563C1" vlink="#954F72">
<div class="WordSection1">
<p class="MsoNormal">Spec Call Notes 6-Jul-20<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Mike Jones<o:p></o:p></p>
<p class="MsoNormal">Nat Sakimura<o:p></o:p></p>
<p class="MsoNormal">Tobias Looker<o:p></o:p></p>
<p class="MsoNormal">Edmund Jay<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">External Organizations<o:p></o:p></p>
<p class="MsoNormal"> DIF - Distributed Identity Foundation<o:p></o:p></p>
<p class="MsoNormal"> Don is working on establishing a liaison relationship<o:p></o:p></p>
<p class="MsoNormal"> We don't know who our liaison officer will be yet<o:p></o:p></p>
<p class="MsoNormal"> IIF - Institute of International Finance<o:p></o:p></p>
<p class="MsoNormal"> There will be call Thursday Japan Time including Nat and Don<o:p></o:p></p>
<p class="MsoNormal"> Topic: Establishing Digital Trust<o:p></o:p></p>
<p class="MsoNormal"> Nat will be giving an overview of OpenID's relevant specs and programs<o:p></o:p></p>
<p class="MsoNormal"> IIF is part of IMF<o:p></o:p></p>
<p class="MsoNormal"> Nat was hoping to get an SC17 MDL update<o:p></o:p></p>
<p class="MsoNormal"> Tony Nadalin is working on that<o:p></o:p></p>
<p class="MsoNormal"> MDL is both using the eKYC-IDA verified claims representation and has a CBOR representation<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Events<o:p></o:p></p>
<p class="MsoNormal"> Second SIOP Virtual Meetup in a Pacific-friendly timeslot<o:p></o:p></p>
<p class="MsoNormal"> We're planning for two hours starting with the OpenID Connect call timeslot<o:p></o:p></p>
<p class="MsoNormal"> 4pm Pacific Time, July 20 / July 21 Asia/Pacific<o:p></o:p></p>
<p class="MsoNormal"> Tobias should be able to attend<o:p></o:p></p>
<p class="MsoNormal"> Nat will create an Eventbrite page<o:p></o:p></p>
<p class="MsoNormal"> We should try during the workshop to produce an agreed upon plan of next steps<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">SIOP Next Steps<o:p></o:p></p>
<p class="MsoNormal"> We discussed topics for the next meetup<o:p></o:p></p>
<p class="MsoNormal"> We need problem statements and proposals<o:p></o:p></p>
<p class="MsoNormal"> A decision to make is what kind(s) of new specs we want/need<o:p></o:p></p>
<p class="MsoNormal"> Extension spec(s) are one possibility<o:p></o:p></p>
<p class="MsoNormal"> Any breaking changes would clearly be in a new spec (if needed)<o:p></o:p></p>
<p class="MsoNormal"> We should probably non-normatively describe how a DID SIOP extension might work<o:p></o:p></p>
<p class="MsoNormal"> We should work on claims requests for distributed and aggregated claims<o:p></o:p></p>
<p class="MsoNormal"> Some are also interested in having these requests work with Verifiable Credentials<o:p></o:p></p>
<p class="MsoNormal"> Tobias shared a SIOP Laundry List doc<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://hackmd.io/1RBWM2yhQDiOSAdtjEuIRw?both">
https://hackmd.io/1RBWM2yhQDiOSAdtjEuIRw?both</a><o:p></o:p></p>
<p class="MsoNormal"> He plans to open an issue based on his list<o:p></o:p></p>
<p class="MsoNormal"> Nat talked about needing a binding parameter<o:p></o:p></p>
<p class="MsoNormal"> A stable subject identifier for both the claims provider and the SIOP response<o:p></o:p></p>
<p class="MsoNormal"> Tobias said that this could be a JWT Thumbprint of a public key<o:p></o:p></p>
<p class="MsoNormal"> Nat said that in some use cases, this subject identifier should be ephemeral<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">JSON Canonicalization Scheme (JCS)<o:p></o:p></p>
<p class="MsoNormal"> As an FYI, Anders Rundgren completed his JCS document as an informational RFC<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://tools.ietf.org/html/rfc8785">
https://tools.ietf.org/html/rfc8785</a><o:p></o:p></p>
<p class="MsoNormal"> Mike believes there are ambiguities in the serialization, such as for 0x7F (DEL)<o:p></o:p></p>
<p class="MsoNormal"> Nat is concerned about multiple representations for Unicode characters<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Federation Specification<o:p></o:p></p>
<p class="MsoNormal"> The spec has been updated to address issues found during the June 2020 Interop<o:p></o:p></p>
<p class="MsoNormal"> New draft uses either signed request objects (JAR) or pushed authorization requests (PAR) for client authentication of automatic registration requests<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://openid.net/2020/07/01/openid-connect-federation-draft-incorporating-feedback-from-first-interop-event/">
https://openid.net/2020/07/01/openid-connect-federation-draft-incorporating-feedback-from-first-interop-event/</a><o:p></o:p></p>
<p class="MsoNormal"> Mike's Identiverse talk on OpenID Federation is tomorrow 7/7 at Noon Pacific Time<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://onlinexperiences.com/Launch/Event/ShowKey=96621">
https://onlinexperiences.com/Launch/Event/ShowKey=96621</a><o:p></o:p></p>
<p class="MsoNormal"> Some new Federation spec issues have also been filed<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Certification<o:p></o:p></p>
<p class="MsoNormal"> We want people to run the old and the new test suites and get free certifications<o:p></o:p></p>
<p class="MsoNormal"> This will give us actionable feedback on the new test suite<o:p></o:p></p>
<p class="MsoNormal"> See <a href="https://openid.net/certification/migration/">
https://openid.net/certification/migration/</a><o:p></o:p></p>
<p class="MsoNormal"> Nat suggested on the previous call that we send an e-mail to those who had certified in the past<o:p></o:p></p>
<p class="MsoNormal"> Mike Leszcz plans to send those e-mails tomorrow<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">OAuth JAR<o:p></o:p></p>
<p class="MsoNormal"> Nat e-mailed Ben Kaduk asking for the draft to be sent back to the IESG<o:p></o:p></p>
<p class="MsoNormal"> Ben hasn't responded yet - Nat will ping him again<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Open Issues<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://bitbucket.org/openid/connect/issues?status=new&status=open">
https://bitbucket.org/openid/connect/issues?status=new&status=open</a><o:p></o:p></p>
<p class="MsoNormal"> #1081 - Need for a persistence user identifier - a PUID<o:p></o:p></p>
<p class="MsoNormal"> Tom Jones linked this to FAPI issue #223<o:p></o:p></p>
<p class="MsoNormal"> Nat said that the identifier doesn't have to be persistent - he will add a comment<o:p></o:p></p>
<p class="MsoNormal"> In the case of open banking, Nat said that the identifier is ephemeral<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Next Call<o:p></o:p></p>
<p class="MsoNormal"> The next working group call is Thursday, July 16 at 7am Pacific Time<o:p></o:p></p>
</div>
</body>
</html>