<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri",sans-serif;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="#0563C1" vlink="#954F72">
<div class="WordSection1">
<p class="MsoNormal">Spec Call Notes 20-Jul-20<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Mike Jones<o:p></o:p></p>
<p class="MsoNormal">Nat Sakimura<o:p></o:p></p>
<p class="MsoNormal">Tony Nadalin<o:p></o:p></p>
<p class="MsoNormal">John Bradley<o:p></o:p></p>
<p class="MsoNormal">Bjorn Hjelm<o:p></o:p></p>
<p class="MsoNormal">Edmund Jay<o:p></o:p></p>
<p class="MsoNormal">Tom Jones<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Events<o:p></o:p></p>
<p class="MsoNormal"> OAuth Security Workshop<o:p></o:p></p>
<p class="MsoNormal"> Starts tomorrow. OIDF workshop on Tuesday.<o:p></o:p></p>
<p class="MsoNormal"> Participants should have received e-mail<o:p></o:p></p>
<p class="MsoNormal"> OAuth Security Workshop: Important Information<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://barcamptools.eu/oauth-security-workshop-2020/events">
https://barcamptools.eu/oauth-security-workshop-2020/events</a><o:p></o:p></p>
<p class="MsoNormal"> Second SIOP Virtual Meetup in a Pacific-friendly timeslot<o:p></o:p></p>
<p class="MsoNormal"> Next week at this time: 4-6pm Pacific Time on Monday, July 27th<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://www.eventbrite.co.uk/e/siop-virtual-meetup-2-tickets-113754506792">
https://www.eventbrite.co.uk/e/siop-virtual-meetup-2-tickets-113754506792</a><o:p></o:p></p>
<p class="MsoNormal"> Speaking slots are still open<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">SIOP Issues<o:p></o:p></p>
<p class="MsoNormal"> The claims aggregation draft is relevant<o:p></o:p></p>
<p class="MsoNormal"> Tony said that need to figure out what should go into the base and what's a profile<o:p></o:p></p>
<p class="MsoNormal"> For instance, he doesn't think that DID or Verifiable Credentials content should go into the base<o:p></o:p></p>
<p class="MsoNormal"> Tom wants key rollover<o:p></o:p></p>
<p class="MsoNormal"> John said that sometimes you want to change keys for reasons of recovery<o:p></o:p></p>
<p class="MsoNormal"> Algorithm agility is another reason for rollover<o:p></o:p></p>
<p class="MsoNormal"> Tom listed the multiple devices use cases<o:p></o:p></p>
<p class="MsoNormal"> John reminisced about the use of XRDS in OpenID 2.0<o:p></o:p></p>
<p class="MsoNormal"> Join points out that with aggregated claims, different claims sets can be signed by different entities<o:p></o:p></p>
<p class="MsoNormal"> John asked whether people want to have multiple self-issued providers<o:p></o:p></p>
<p class="MsoNormal"> Also see issue #1180 - SIOP Laundry List<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">OAuth JAR<o:p></o:p></p>
<p class="MsoNormal"> Nat created a PR addressing Ben Kaduk's requested clarifications<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://bitbucket.org/Nat/oauth-jwsreq/pull-requests/9">
https://bitbucket.org/Nat/oauth-jwsreq/pull-requests/9</a><o:p></o:p></p>
<p class="MsoNormal"> Mike has approved it<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">OIDC Aggregated Claims Draft<o:p></o:p></p>
<p class="MsoNormal"> See the attachment in Nat's message:<o:p></o:p></p>
<p class="MsoNormal"> [Openid-specs-ab] Claims Aggregation Draft<o:p></o:p></p>
<p class="MsoNormal"> Defines more on how to use them than the Core draft does<o:p></o:p></p>
<p class="MsoNormal"> Defines a separate claims endpoint<o:p></o:p></p>
<p class="MsoNormal"> Closely related to eKYC-IDA needs<o:p></o:p></p>
<p class="MsoNormal"> Also a need to constrain the claims set for minimal disclosure purposes<o:p></o:p></p>
<p class="MsoNormal"> Nat would like this to become a working group document after review<o:p></o:p></p>
<p class="MsoNormal"> People are encouraged to review it before the SIOP meeting next week<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Logout Specs<o:p></o:p></p>
<p class="MsoNormal"> Mike is splitting the RP-Initiated Logout functionality into its own draft<o:p></o:p></p>
<p class="MsoNormal"> Per the previous working group decision<o:p></o:p></p>
<p class="MsoNormal"> It's all existing content<o:p></o:p></p>
<p class="MsoNormal"> Nat points out that we'll need to formally adopt this<o:p></o:p></p>
<p class="MsoNormal"> Mike is getting updated contact information from contributors<o:p></o:p></p>
<p class="MsoNormal"> Mike will both update to current affiliations and list old ones in errata<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Certification<o:p></o:p></p>
<p class="MsoNormal"> We now have OP submission instructions<o:p></o:p></p>
<p class="MsoNormal"> Referenced from <a href="https://openid.net/certification/migration/">
https://openid.net/certification/migration/</a><o:p></o:p></p>
<p class="MsoNormal"> No one has used them yet<o:p></o:p></p>
<p class="MsoNormal"> Edmund Jay plans to try to use them soon<o:p></o:p></p>
<p class="MsoNormal"> We've had a few others testing and filing bugs<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">WG Status Page<o:p></o:p></p>
<p class="MsoNormal"> Mike updated our working group status page<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://openid.net/wg/connect/status/">
https://openid.net/wg/connect/status/</a><o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Open Issues<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://bitbucket.org/openid/connect/issues?status=new&status=open">
https://bitbucket.org/openid/connect/issues?status=new&status=open</a><o:p></o:p></p>
<p class="MsoNormal"> #1178 & #1179 & #1168 - Federation issues<o:p></o:p></p>
<p class="MsoNormal"> We assigned these to Roland<o:p></o:p></p>
<p class="MsoNormal"> #1175 - Create documentation for Self-Issued Identifiers<o:p></o:p></p>
<p class="MsoNormal"> Tom agreed to write a spec-like document with ideas<o:p></o:p></p>
<p class="MsoNormal"> #1168 - Federation: How should an OP signal to the RP that its registration has expired?<o:p></o:p></p>
<p class="MsoNormal"> People are requested to review this one<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Next Call<o:p></o:p></p>
<p class="MsoNormal"> Second SIOP Virtual Meetup is Monday, July 27th at 4-6pm Pacific Time<o:p></o:p></p>
<p class="MsoNormal"> The next working group call is Thursday, July 30 at 7am Pacific Time<o:p></o:p></p>
</div>
</body>
</html>