<div dir="ltr"><h1 class="gmail-title" style="margin:0px 0px 10px;padding:0px;color:rgb(23,43,77);font-size:24px;font-weight:400;line-height:1.25;letter-spacing:-0.01em;font-family:-apple-system,system-ui,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif">OpenID AB/Connect WG Meeting Notes (2020-09-10)</h1><p style="margin:12px 0px 0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,system-ui,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px">Date & Time: 2020-09-10 14:00 UTC Location: <a class="gmail-reference external" href="https://global.gotomeeting.com/join/181372694" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">https://global.gotomeeting.com/join/181372694</a></p><div class="gmail-contents gmail-topic" id="gmail-rst-header-agenda" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,system-ui,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><p class="gmail-topic-title gmail-first" style="margin:0px;padding:0px">Agenda</p><ul class="gmail-auto-toc gmail-simple" style="margin:12px 0px 0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-roll-call" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">1.   Roll Call</a></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-adoption-of-agenda-nat" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">2.   Adoption of Agenda (Nat)</a></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-external-organizations" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">3.   External organizations</a><ul class="gmail-auto-toc" style="margin:0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-w3c-incuberter-community-group-and-privacy-community-group-george" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">3.1.   W3C Incuberter community group and privacy community group (George)</a></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-dif-kristina-markus" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">3.2.   DIF (Kristina/Markus)</a></li></ul></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-events" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">4.   Events</a><ul class="gmail-auto-toc" style="margin:0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-sc27-nat" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">4.1.   SC27 (Nat)</a></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-fdx-dev-con-nat" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">4.2.   FDX Dev Con (Nat)</a></li></ul></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-drafts" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">5.   Drafts</a><ul class="gmail-auto-toc" style="margin:0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-openid-self-issued-identifiers-tom" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">5.1.   OpenID Self Issued Identifiers (Tom)</a></li></ul></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-issues" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">6.   Issues</a><ul class="gmail-auto-toc" style="margin:0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-add-logout-hint-parameter-to-rp-initiated-logout-request-mike" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">6.1.   1182 Add logout_hint parameter to RP-Initiated Logout request (Mike)</a></li></ul></li><li style="margin:0px"><a class="gmail-reference gmail-internal" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-aob" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">7.   AOB</a></li></ul></div><p style="margin:12px 0px 0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,system-ui,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px">The meeting was called to order at 14:00 UTC.</p><div class="gmail-section" id="gmail-rst-header-roll-call" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,system-ui,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id1" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">1.   Roll Call</a></h2><ul class="gmail-simple" style="margin:12px 0px 0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;">Attending: Nat, Filip, Tom, Markus, Kristina, George, John, Torsten, Kim, Joseph</li><li style="margin:0px">Regrets:</li><li style="margin:0px">Guest:</li></ul></div><div class="gmail-section" id="gmail-rst-header-adoption-of-agenda-nat" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,system-ui,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id2" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">2.   Adoption of Agenda (Nat)</a></h2><ul class="gmail-simple" style="margin:12px 0px 0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;">As agenda was not circulated before the call, it was dynamically created and agreed.</li></ul></div><div class="gmail-section" id="gmail-rst-header-external-organizations" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,system-ui,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id3" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">3.   External organizations</a></h2><div class="gmail-section" id="gmail-rst-header-w3c-incuberter-community-group-and-privacy-community-group-george" style="margin:0px;padding:0px"><h3 style="margin:20px 0px 0px;padding:0px;font-size:18px;font-weight:400;line-height:1.38889;font-style:inherit;letter-spacing:-0.006em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id4" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">3.1.   W3C Incuberter community group and privacy community group (George)</a></h3><p style="margin:12px 0px 0px;padding:0px">George introduced his concern around WebID proposal that was made to W3C incubator community group as follows:</p><p style="margin:12px 0px 0px;padding:0px">Google has officially contributed, their web ID proposal into the W3C incubator community group. At a high level, the browsers want to intermediate identity flows and they want to intermediate identity flows because they want to be able to separate identity flows from ad tracking flows.</p><p style="margin:12px 0px 0px;padding:0px">There's also sort of an underlying aspect in the sense of privacy where browsers want to be able to show the user, all the places you're logged in and be able to do things like,</p><p style="margin:12px 0px 0px;padding:0px">"Hey, You haven't visited CNN dot com, you know, for the last eight days, but you're currently logged in, you want to stay logged in?" and then if the user says no, they wipe cookies.</p><p style="margin:12px 0px 0px;padding:0px">There are all sorts of implications if they wipe all the cookies effectively, including the trust cookies that tell us that this is a trusted browser where George has logged in for two hours logged in from before. This basically turns it into an untrusted browser, which may mean you have to do an extra challenge. And if these things get wiped every seven days, the user experience for login across the web goes down.</p><p style="margin:12px 0px 0px;padding:0px">There is another concern: Web ID is really looking at this largely from the use by individual users, surfing the web, not from enterprise use cases or academic federation use cases or even large organizations that use standards for the first-party authentication across their properties.</p><p style="margin:12px 0px 0px;padding:0px">This is going to affect all parties that use OpenID and SAML.</p><p style="margin:12px 0px 0px;padding:0px">Thus, we need more identity people in the in, and that's in the incubator community group to feed and add use cases and help people define.</p><p style="margin:12px 0px 0px;padding:0px">To do so, a lot of us need to join the community group. They work through biweekly calls and GitHub issues.</p><ul class="gmail-simple" style="margin:12px 0px 0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;"><a class="gmail-reference external" href="https://github.com/privacycg" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">https://github.com/privacycg</a></li><li style="margin:0px"><a class="gmail-reference external" href="https://github.com/WICG/WebID" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">https://github.com/WICG/WebID</a></li></ul><p style="margin:12px 0px 0px;padding:0px">Nat asked the callers to join the group and start feeding use-cases, etc.</p></div><div class="gmail-section" id="gmail-rst-header-dif-kristina-markus" style="margin:0px;padding:0px"><h3 style="margin:20px 0px 0px;padding:0px;font-size:18px;font-weight:400;line-height:1.38889;font-style:inherit;letter-spacing:-0.006em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id5" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">3.2.   DIF (Kristina/Markus)</a></h3><p style="margin:12px 0px 0px;padding:0px">Kristina and Markus reported that not much is happening in terms of DID=SIOP as it is supposed to be moved here.</p><p style="margin:12px 0px 0px;padding:0px">Torsten asked if the most current spec has the claims handling capability as the version that Pam sent did not. Kristina replied that it is under discussion but not yet.</p></div></div><div class="gmail-section" id="gmail-rst-header-events" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,system-ui,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id6" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">4.   Events</a></h2><div class="gmail-section" id="gmail-rst-header-sc27-nat" style="margin:0px;padding:0px"><h3 style="margin:20px 0px 0px;padding:0px;font-size:18px;font-weight:400;line-height:1.38889;font-style:inherit;letter-spacing:-0.006em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id7" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">4.1.   SC27 (Nat)</a></h3><p style="margin:12px 0px 0px;padding:0px">Starting this Saturday for a week. There is an opportunity to report our activity to them. If there is a specific item that you want to draw their attention, please inform Tony Nadalin, the OIDF to SC27/WG5 Liaison officer and Nat.</p></div><div class="gmail-section" id="gmail-rst-header-fdx-dev-con-nat" style="margin:0px;padding:0px"><h3 style="margin:20px 0px 0px;padding:0px;font-size:18px;font-weight:400;line-height:1.38889;font-style:inherit;letter-spacing:-0.006em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id8" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">4.2.   FDX Dev Con (Nat)</a></h3><p style="margin:12px 0px 0px;padding:0px">22nd and 23rd. Nat is going to make a keynote presentation. Some announcement around OpenID is expected in the meeting.</p></div></div><div class="gmail-section" id="gmail-rst-header-drafts" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,system-ui,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id9" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">5.   Drafts</a></h2><div class="gmail-section" id="gmail-rst-header-openid-self-issued-identifiers-tom" style="margin:0px;padding:0px"><h3 style="margin:20px 0px 0px;padding:0px;font-size:18px;font-weight:400;line-height:1.38889;font-style:inherit;letter-spacing:-0.006em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id10" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">5.1.   OpenID Self Issued Identifiers (Tom)</a></h3><p style="margin:12px 0px 0px;padding:0px">Tom told the group that he is not getting any feedback and asked why.</p><p style="margin:12px 0px 0px;padding:0px">Nat and John told Tom that it is partly due to him not sending the copy of the document to the list and thus WG cannot comment on it due to IPR restrictions.</p><p style="margin:12px 0px 0px;padding:0px">He previously sent the link to his document[1] on Aug. 27 but as Mike Jones, the secretary, pointed out in the last meeting, it does not work from the IPR PoV as the content may change at any time.</p><p style="margin:12px 0px 0px;padding:0px">[1] <a class="gmail-reference external" href="https://github.com/KantaraInitiative/DistributedAssurance/blob/master/OpenID%20Self%20Issued%20Identifier.md" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">https://github.com/KantaraInitiative/DistributedAssurance/blob/master/OpenID%20Self%20Issued%20Identifier.md</a></p><p style="margin:12px 0px 0px;padding:0px">Tom promised to send the copy to the list.</p><p style="margin:12px 0px 0px;padding:0px">Markus told Tom that if it is needed to be taken up on the DIF side, it can be done as he is a co-chair there.</p></div></div><div class="gmail-section" id="gmail-rst-header-issues" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,system-ui,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id11" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">6.   Issues</a></h2><div class="gmail-section" id="gmail-rst-header-add-logout-hint-parameter-to-rp-initiated-logout-request-mike" style="margin:0px;padding:0px"><h3 style="margin:20px 0px 0px;padding:0px;font-size:18px;font-weight:400;line-height:1.38889;font-style:inherit;letter-spacing:-0.006em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id12" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">6.1.   1182 Add logout_hint parameter to RP-Initiated Logout request (Mike)</a></h3><ul class="gmail-simple" style="margin:12px 0px 0px;padding:0px 0px 0px 40px"><li style="overflow-wrap: break-word;"><a class="gmail-reference external" href="https://bitbucket.org/openid/connect/issues/1182/add-logout_hint-parameter-to-rp-initiated" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">https://bitbucket.org/openid/connect/issues/1182/add-logout_hint-parameter-to-rp-initiated</a></li></ul><p style="margin:12px 0px 0px;padding:0px">The issue was discussed over 30 minutes but has not come to a consensus. The main topic was whether to include <cite>client_id</cite> in the request parameter so that the error can be returned to RP so that RP can take appropriate action.</p><p style="margin:12px 0px 0px;padding:0px">Mike Jones opposed the idea that adding a parameter will increase the number of combinations of possible parameters and will likely get less support from OPs but Filip and George were not convinced.</p><p style="margin:12px 0px 0px;padding:0px">Filip also proposed a text in the issue that will be backwards compatible and yet allows the response to be returned to the RP.</p><p style="margin:12px 0px 0px;padding:0px">John proposed a solution that requires the prompting and Filip told that it does not help him to load up the client and verify.</p><p style="margin:12px 0px 0px;padding:0px">As it was approaching the end of the call, Nat intervened and asked to take the discussion either offline and report back to the WG or continue next week.</p></div></div><div class="gmail-section" id="gmail-rst-header-aob" style="margin:0px;padding:0px;color:rgb(23,43,77);font-family:-apple-system,system-ui,"Segoe UI",Roboto,Oxygen,Ubuntu,"Fira Sans","Droid Sans","Helvetica Neue",sans-serif;font-size:14px"><h2 style="margin:20px 0px 0px;padding:0px;font-size:20px;font-weight:400;line-height:1.5;font-style:inherit;letter-spacing:-0.008em"><a class="gmail-toc-backref" href="https://bitbucket.org/openid/connect/wiki/Connect_Meeting_Notes_2020-09-10_Atlantic#rst-header-id13" rel="nofollow" style="color:rgb(0,82,204);text-decoration-line:none">7.   AOB</a></h2><p style="margin:12px 0px 0px;padding:0px">N/A</p><p style="margin:12px 0px 0px;padding:0px">The meeting was adjourned at 15:00 UTC</p></div><br clear="all"><div><br></div>-- <br><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr">Nat Sakimura<div>NAT.Consulting LLC</div></div></div></div>