<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:Helvetica;
panose-1:2 11 6 4 2 2 2 2 2 4;}
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"MS Pゴシック";
panose-1:2 11 6 0 7 2 5 8 2 4;}
@font-face
{font-family:"Yu Gothic UI";
panose-1:2 11 5 0 0 0 0 0 0 0;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:"Noto Sans CJK JP Medium";
panose-1:2 11 6 0 0 0 0 0 0 0;}
@font-face
{font-family:"Noto Sans CJK JP Light";
panose-1:2 11 3 0 0 0 0 0 0 0;}
@font-face
{font-family:"\@MS Pゴシック";}
@font-face
{font-family:inherit;
panose-1:0 0 0 0 0 0 0 0 0 0;}
@font-face
{font-family:"\@Noto Sans CJK JP Light";}
@font-face
{font-family:"\@Noto Sans CJK JP Medium";}
@font-face
{font-family:"\@Yu Gothic UI";}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0mm;
font-size:12.0pt;
font-family:"MS Pゴシック";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
span.xapple-converted-space
{mso-style-name:x_apple-converted-space;}
span.EmailStyle21
{mso-style-type:personal-reply;
font-family:"Noto Sans CJK JP Medium",sans-serif;
color:#4472C4;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:99.25pt 30.0mm 30.0mm 30.0mm;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026">
<v:textbox inset="5.85pt,.7pt,5.85pt,.7pt" />
</o:shapedefaults></xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="JA" link="blue" vlink="purple" style="word-wrap:break-word">
<div class="WordSection1">
<p class="MsoNormal"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">Hi Torsten, </span><span lang="EN-US"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white"><br>
> Can you please elaborate? SIOP as it Stands today is tied to the response type </span>
<span style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">„<span lang="EN-US">id_token</span>“<span lang="EN-US">, i.e. the RP sends the user agent to the SIOP on the same device. Transaction
integrity is ensured by binding the nonce in the request to a cookie in this user agent. How do you envision to cross the boundary between devices and what are the consequences on the security of the flow? Can you share a sequence diagram?</span></span><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white"><br>
The cross device flow could look like this:</span><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">1/ The user browses to the RP website</span><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">2/ The RP displays a QR code with request_uri
in the user browser on device A</span><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">(deeplink will be used in same-device flow)</span><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">3/ The user uses device B (Mobile Wallet) to scan
the QR code, dereference it and fetch SIOP request object from the request_uri</span><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">(processes like DID resolution can occur in-between)</span><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">4/ Mobile wallet sends ID Token (with embedded
VP when VP is returned) in HTTP POST request to the RP</span><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p> </o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">Sequence diagram of the implementation can be
found here (note that some element of the flow might have changed from Dec. 2020):</span><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white"><a href="https://us02web.zoom.us/rec/play/BRBDWWUtB9HsmE88cJQwC9OH4k-QM9cdg8UYJXm6wwj-Yt54f7QMPPFqmQn-vtGAVNJgV9fGBeGN3eZR.QYMKFKYkJzdmdyaG">https://us02web.zoom.us/rec/play/BRBDWWUtB9HsmE88cJQwC9OH4k-QM9cdg8UYJXm6wwj-Yt54f7QMPPFqmQn-vtGAVNJgV9fGBeGN3eZR.QYMKFKYkJzdmdyaG</a><br>
It is a presentation at DIF Interoperability WG.</span><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black"><o:p> </o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">> I think the SIOP should expose a CIBA style
interface to allow direct engagement from the verifier with the reader. The device engagement data could be used to share the endpoint location and so on.</span><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black"><o:p> </o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">Interesting. Do you mean holder sending a request
direcly to the reader's Backchannel Authentication Endpoint? I am not very familiar with CIBA flows but we should probably explore more (cc: Tony)</span><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black"><o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-family:"inherit",serif;color:black"><o:p> </o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">Thank you,<o:p></o:p></span></p>
<p class="MsoNormal" style="background:white;vertical-align:baseline"><span lang="EN-US" style="font-size:10.5pt;font-family:"Yu Gothic UI";color:black;border:none windowtext 1.0pt;padding:0mm;background:white">Kristina<o:p></o:p></span></p>
<p class="MsoNormal"><span lang="EN-US" style="font-size:11.0pt;font-family:"Noto Sans CJK JP Medium",sans-serif;color:#4472C4"><o:p> </o:p></span></p>
<div>
<div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0mm 0mm 0mm">
<p class="MsoNormal"><b><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif">From:</span></b><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif"> Torsten Lodderstedt <torsten@lodderstedt.net>
<br>
<b>Sent:</b> Saturday, June 26, 2021 1:35 AM<br>
<b>To:</b> Kristina Yasuda <Kristina.Yasuda@microsoft.com><br>
<b>Cc:</b> Openid-specs-ab@lists.openid.net<br>
<b>Subject:</b> Re: [Openid-specs-ab] DHS mDL RFI response from OpenID Foundation<o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<div>
<p class="MsoNormal"><span lang="EN-US">Hi Kristina,<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US"><br>
<br>
<o:p></o:p></span></p>
<blockquote style="margin-top:5.0pt;margin-bottom:5.0pt">
<p class="MsoNormal" style="margin-bottom:12.0pt"><span lang="EN-US">Am 26.06.2021 um 04:32 schrieb Kristina Yasuda <<a href="mailto:Kristina.Yasuda@microsoft.com">Kristina.Yasuda@microsoft.com</a>>:<o:p></o:p></span></p>
</blockquote>
</div>
<blockquote style="margin-top:5.0pt;margin-bottom:5.0pt">
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Tahoma",sans-serif"></span><span lang="EN-US">
<o:p></o:p></span></p>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black">Thank you for the feedback, Torsten. Please find comments in-line below.<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black">@Everyone, I am attaching the current version of the response. Kind reminder that we set the new deadline for comments to be
<b>June 30th</b>.<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p> </o:p></span></p>
</div>
<div>
<div>
<p style="margin:0mm;background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E">- the example on p7 uses „verified_claims“ syntax, so it might be worthwhile mentioning OpenID Connect 4 Identity Assurance in
the document<o:p></o:p></span></p>
<p style="margin:0mm;background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E">-> I added the following text after the example on p7. Let me know if you want it changed. <o:p></o:p></span></p>
<div>
<p class="MsoNormal" style="background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E">"The “verified_claims” container element used in the example above is taken from OpenID Connect for Identity Assurance 1.0
specification (ekyc-ida) in OpenID Foundation. The usage of “verified_claims” container element allows to include information how the identity of a natural person has been verified in compliance with a certain law."<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal" style="background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E">Note that the Annex part has been submitted to the ISO mDL WG prior to this DHS response document, and this change will
be proposed in the ISO document in the next revision cycle.<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal" style="background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p> </o:p></span></p>
</div>
</div>
<div>
<p style="margin:0mm;background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E">- section 7.1.3.4.4: how is the request sent from the reader to the SIOP? I’m asking since I thought those parties would live on
different devices<o:p></o:p></span></p>
<p style="margin:0mm;background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E">->"Over the Internet", to borrow the terminology used in ISO. RP does not have to be on the same device as SIOP.<o:p></o:p></span></p>
</div>
</div>
</div>
</blockquote>
<div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
</div>
<p class="MsoNormal"><span lang="EN-US">Can you please elaborate? SIOP as it Stands today is tied to the response type „id_token“, i.e. the RP sends the user agent to the SIOP on the same device. Transaction integrity is ensured by binding the nonce in the
request to a cookie in this user agent. How do you envision to cross the boundary between devices and what are the consequences on the security of the flow? Can you share a sequence diagram?<o:p></o:p></span></p>
<div>
<p class="MsoNormal"><span lang="EN-US"><br>
<br>
<o:p></o:p></span></p>
<blockquote style="margin-top:5.0pt;margin-bottom:5.0pt">
<div>
<div>
<div>
<p style="margin:0mm;background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E">The question made me think that mDL specification does have a specific "device engagement" step during which registration/discovery
information is passed in CBOR over NFC or QR code, so maybe we can leverage that for SIOP discovery/registration - need to think more.<o:p></o:p></span></p>
</div>
</div>
</div>
</blockquote>
<div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
</div>
<p class="MsoNormal"><span lang="EN-US">I think the SIOP should expose a CIBA style interface to allow direct engagement from the verifier with the reader. The device engagement data could be used to share the endpoint location and so on.<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US"><br>
<br>
<o:p></o:p></span></p>
<blockquote style="margin-top:5.0pt;margin-bottom:5.0pt">
<div>
<div>
<div>
<p style="margin:0mm;background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p> </o:p></span></p>
</div>
<div>
<p style="margin:0mm;background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E">- Generally: would it be possible to share more context with the WG? It seems like a lot of knowledge about ISO/IEC 18013-5 is
required to understand the proposal<o:p></o:p></span></p>
<p style="margin:0mm;background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E">-> Currently, OIDC in mDL is used for the verifier to talk to the Issuing authority to retrieve mDL data using the access token
received from the user. This direct path to the Issuing Authority has raised concerns from verifiers and resulted in the need for "over the internet" solution directly between user and the verifier, so the SIOP was proposed. <o:p></o:p></span></p>
<p style="margin:0mm;background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E"><o:p> </o:p></span></p>
</div>
<div>
<p style="margin:0mm;background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E">- typo on p2 2nd paragraph: "OpenII Connect“ -> OpenID Connect <o:p></o:p></span></p>
<p style="margin:0mm;background:white"><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#201F1E">-> corrected.<o:p></o:p></span></p>
</div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black"><o:p> </o:p></span></p>
</div>
</div>
</blockquote>
<p class="MsoNormal"><span lang="EN-US"><br>
best regards,<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US">Torsten.<br>
<br>
<o:p></o:p></span></p>
<blockquote style="margin-top:5.0pt;margin-bottom:5.0pt">
<div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black">Best,<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif;color:black">Kristina<o:p></o:p></span></p>
</div>
<div class="MsoNormal" align="center" style="text-align:center"><span lang="EN-US">
<hr size="2" width="98%" align="center">
</span></div>
<div id="divRplyFwdMsg">
<p class="MsoNormal"><b><span style="font-size:11.0pt;color:black">差出人</span></b><b><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">:</span></b><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">
Torsten Lodderstedt <<a href="mailto:torsten@lodderstedt.net">torsten@lodderstedt.net</a>><br>
</span><b><span style="font-size:11.0pt;color:black">送信日時</span></b><b><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">:</span></b><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">
2021</span><span style="font-size:11.0pt;color:black">年</span><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">6</span><span style="font-size:11.0pt;color:black">月</span><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">14</span><span style="font-size:11.0pt;color:black">日</span><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">
1:43<br>
</span><b><span style="font-size:11.0pt;color:black">宛先</span></b><b><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">:</span></b><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">
Artifact Binding/Connect Working Group <<a href="mailto:openid-specs-ab@lists.openid.net">openid-specs-ab@lists.openid.net</a>><br>
<b>CC:</b> Kristina Yasuda <<a href="mailto:Kristina.Yasuda@microsoft.com">Kristina.Yasuda@microsoft.com</a>><br>
</span><b><span style="font-size:11.0pt;color:black">件名</span></b><b><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">:</span></b><span lang="EN-US" style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">
Re: [Openid-specs-ab] DHS mDL RFI response from OpenID Foundation</span><span lang="EN-US">
<o:p></o:p></span></p>
<div>
<p class="MsoNormal"><span lang="EN-US"> <o:p></o:p></span></p>
</div>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US">Hi, <o:p></o:p></span></p>
<div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US">thanks for sharing the draft response. <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US">Here are my comments:<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US">- the example on p7 uses „verified_claims“ syntax, so it might be worthwhile mentioning OpenID Connect 4 Identity Assurance in the document<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US">- section 7.1.3.4.4: how is the request sent from the reader to the SIOP? I’m asking since I thought those parties would live on different devices<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US">- Generally: would it be possible to share more context with the WG? It seems like a lot of knowledge about ISO/IEC 18013-5 is required to understand the proposal<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US">- typo on p2 2nd paragraph: "OpenII Connect“ -> OpenID Connect <o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US">best regards,<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US">Torsten. <o:p></o:p></span></p>
</div>
<div>
<div>
<p class="MsoNormal"><span lang="EN-US"><br>
<br>
<o:p></o:p></span></p>
<blockquote style="margin-top:5.0pt;margin-bottom:5.0pt">
<div>
<p class="MsoNormal"><span lang="EN-US">Am 14.06.2021 um 09:32 schrieb Kristina Yasuda via Openid-specs-ab <<a href="mailto:openid-specs-ab@lists.openid.net">openid-specs-ab@lists.openid.net</a>>:<o:p></o:p></span></p>
</div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
<div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif">Dear All,<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif"><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif">As discussed during the last Connect WG call, circulating the draft response from OpenID Foundation to<span class="xapple-converted-space"> </span><span style="color:black;background:white">DHS
RFI on mDL (mobile Driving License)</span>.<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif">We wrote it with Tony and Tom Jones, and it has been reviewed by Gail, Mike and Nat.<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif">If you have any comments please send them<span class="xapple-converted-space"> </span><b><u>by June 16th</u></b><span class="xapple-converted-space"> </span>to the ML, so that
we have time to reflect them before the submission deadline on June 18th.<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif">Apologies for circulating last minute. We can also discuss the questions and comments at tomorrow's Pacific Connect WG call.<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif"><o:p> </o:p></span></p>
</div>
<div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif">Below are links to the original RFI from DHS:</span><span lang="EN-US" style="font-size:9.0pt;font-family:"Helvetica",sans-serif"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif">- <a href="https://www.google.com/url?q=https://nam06.safelinks.protection.outlook.com/?url%3Dhttps%253A%252F%252Fwww.google.com%252Furl%253Fq%253Dhttps%253A%252F%252Fwww.govinfo.gov%252Fcontent%252Fpkg%252FFR-2021-04-19%252Fpdf%252F2021-07957.pdf%2526source%253Dgmail-imap%2526ust%253D1624260775000000%2526usg%253DAOvVaw1aQ3sHxbIfB3aUEbHijNiu%26data%3D04%257C01%257CKristina.Yasuda%2540microsoft.com%257Ce30e241796ab495de8d708d92f10778b%257C72f988bf86f141af91ab2d7cd011db47%257C1%257C0%257C637592570519543639%257CUnknown%257CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%253D%257C1000%26sdata%3D1m5%252BWMnsfw2%252FthhyDTIMmjQ1kcFMESE1HYl2AYyzNG4%253D%26reserved%3D0&source=gmail-imap&ust=1625279576000000&usg=AOvVaw25ODNKS8bcom3UuBgSzHm_">https://www.govinfo.gov/content/pkg/FR-2021-04-19/pdf/2021-07957.pdf</a></span><span lang="EN-US" style="font-size:9.0pt;font-family:"Helvetica",sans-serif"><o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-size:9.0pt;font-family:"Helvetica",sans-serif">- <a href="https://www.google.com/url?q=https://nam06.safelinks.protection.outlook.com/?url%3Dhttps%253A%252F%252Fwww.google.com%252Furl%253Fq%253Dhttps%253A%252F%252Fwww.aamva.org%252F21_4_19-Legislative-Alert-DHS-Requests-Information-for-REAL-ID-Mobile-Drivers-License-Rulemaking%252F%2526source%253Dgmail-imap%2526ust%253D1624260775000000%2526usg%253DAOvVaw2bNG6F2m2_TGCHTp7Q4ykE%26data%3D04%257C01%257CKristina.Yasuda%2540microsoft.com%257Ce30e241796ab495de8d708d92f10778b%257C72f988bf86f141af91ab2d7cd011db47%257C1%257C0%257C637592570519553602%257CUnknown%257CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%253D%257C1000%26sdata%3DvvUYqsUJGAqbo1dfdTphxDzcc65B%252BxJwUFiZdbQIJ3c%253D%26reserved%3D0&source=gmail-imap&ust=1625279576000000&usg=AOvVaw3tYuhjE_rs-z1J6wxOAJt8"><span style="font-size:12.0pt;font-family:"Calibri",sans-serif">https://www.aamva.org/21_4_19-Legislative-Alert-DHS-Requests-Information-for-REAL-ID-Mobile-Drivers-License-Rulemaking/</span></a><o:p></o:p></span></p>
</div>
<p class="MsoNormal"><span lang="EN-US" style="font-size:9.0pt;font-family:"Helvetica",sans-serif"><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif">Kindest Regards,<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif">Kristina<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif"><o:p> </o:p></span></p>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US" style="font-family:"Calibri",sans-serif"><o:p> </o:p></span></p>
</div>
<p class="MsoNormal"><span lang="EN-US"><Draft DHS RFI Response - mDL_v01.pdf></span><span lang="EN-US" style="font-size:9.0pt;font-family:"Helvetica",sans-serif">_______________________________________________<br>
Openid-specs-ab mailing list<br>
</span><span lang="EN-US"><a href="mailto:Openid-specs-ab@lists.openid.net"><span style="font-size:9.0pt;font-family:"Helvetica",sans-serif">Openid-specs-ab@lists.openid.net</span></a></span><span lang="EN-US" style="font-size:9.0pt;font-family:"Helvetica",sans-serif"><br>
</span><span lang="EN-US"><a href="https://www.google.com/url?q=https://nam06.safelinks.protection.outlook.com/?url%3Dhttps%253A%252F%252Fwww.google.com%252Furl%253Fq%253Dhttp%253A%252F%252Flists.openid.net%252Fmailman%252Flistinfo%252Fopenid-specs-ab%2526source%253Dgmail-imap%2526ust%253D1624260775000000%2526usg%253DAOvVaw2b8TMjt7LljoUVyGDrXZOz%26data%3D04%257C01%257CKristina.Yasuda%2540microsoft.com%257Ce30e241796ab495de8d708d92f10778b%257C72f988bf86f141af91ab2d7cd011db47%257C1%257C0%257C637592570519563554%257CUnknown%257CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%253D%257C1000%26sdata%3D83eU9%252FL%252FtJznWQyuB0uyK3Thh%252FrNJoB5Ef0Lr7buzI8%253D%26reserved%3D0&source=gmail-imap&ust=1625279576000000&usg=AOvVaw1SJcRdEpSQPS2MOiNBmSol"><span style="font-size:9.0pt;font-family:"Helvetica",sans-serif">https://www.google.com/url?q=http://lists.openid.net/mailman/listinfo/openid-specs-ab&source=gmail-imap&ust=1624260775000000&usg=AOvVaw2b8TMjt7LljoUVyGDrXZOz</span></a><o:p></o:p></span></p>
</div>
</blockquote>
</div>
<p class="MsoNormal"><span lang="EN-US"><o:p> </o:p></span></p>
</div>
</div>
<div>
<p class="MsoNormal"><span lang="EN-US"><Draft DHS RFI Response - mDL_v02.docx><o:p></o:p></span></p>
</div>
</div>
</blockquote>
</div>
</div>
</body>
</html>