<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri",sans-serif;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="#0563C1" vlink="#954F72" style="word-wrap:break-word">
<div class="WordSection1">
<p class="MsoNormal">SIOP Special Topic Call Notes 4-Aug-22<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Kristina Yasuda<o:p></o:p></p>
<p class="MsoNormal">Oliver Terbu<o:p></o:p></p>
<p class="MsoNormal">Tobias Looker<o:p></o:p></p>
<p class="MsoNormal">Mike Jones<o:p></o:p></p>
<p class="MsoNormal">Petteri Stenius<o:p></o:p></p>
<p class="MsoNormal">Geroge Fletcher<o:p></o:p></p>
<p class="MsoNormal">David Chadwick<o:p></o:p></p>
<p class="MsoNormal">Mark Haine<o:p></o:p></p>
<p class="MsoNormal">Dmitri Zagidulin<o:p></o:p></p>
<p class="MsoNormal">Joseph Heenan<o:p></o:p></p>
<p class="MsoNormal">David Waite (DW)<o:p></o:p></p>
<p class="MsoNormal">Bjorn Hjelm<o:p></o:p></p>
<p class="MsoNormal">Andrew Hughes<o:p></o:p></p>
<p class="MsoNormal">Jo Vercammen<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Whitepaper<o:p></o:p></p>
<p class="MsoNormal"> Reviews of the whitepaper are requested, with the goal of producing the final version<o:p></o:p></p>
<p class="MsoNormal"><a href="https://docs.google.com/document/d/1H556GIM_xD1yKl7rw1seq4bu83movFCkU8fQ7T8b1dI/edit#heading=h.tk28vho85gb8">https://docs.google.com/document/d/1H556GIM_xD1yKl7rw1seq4bu83movFCkU8fQ7T8b1dI/edit#heading=h.tk28vho85gb8</a><o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Design Discussion<o:p></o:p></p>
<p class="MsoNormal"> We will discuss the possibility of multiple credentials in a single issuance interaction<o:p></o:p></p>
<p class="MsoNormal"> This is issue #1544: Requesting multiple credentials<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Pull Requests<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://bitbucket.org/openid/connect/pull-requests/">
https://bitbucket.org/openid/connect/pull-requests/</a><o:p></o:p></p>
<p class="MsoNormal"> PR #253: The idea behind these minor changes is that the "Pragma" cache directive is no longer actual. See
<a href="https://bitbucket.org/openid/connect/issues/1483/directive-pragma-no-cache">
https://bitbucket.org/openid/connect/issues/1483/directive-pragma-no-cache</a>.<o:p></o:p></p>
<p class="MsoNormal"> Merged<o:p></o:p></p>
<p class="MsoNormal"> PR #262: changed credential request media type to application/json<o:p></o:p></p>
<p class="MsoNormal"> Merged<o:p></o:p></p>
<p class="MsoNormal"> PR #258: add scope support to OpenID4VPs<o:p></o:p></p>
<p class="MsoNormal"> There is substantial support for merging this<o:p></o:p></p>
<p class="MsoNormal"> Mark Haine asked a clarifying question about this use of scope<o:p></o:p></p>
<p class="MsoNormal"> Mike said that he's comfortable using "scope", since this is the mechanism OAuth defined<o:p></o:p></p>
<p class="MsoNormal"> Mark also asked about Rich Authorization Requests (RAR)<o:p></o:p></p>
<p class="MsoNormal"> Mike said that we could separately discuss that but merging this would constitute progress<o:p></o:p></p>
<p class="MsoNormal"> George commented that scopes would effectively be groupings of capabilities<o:p></o:p></p>
<p class="MsoNormal"> Mike said that this is parallel to the "profile" scope, which requests a group of claims<o:p></o:p></p>
<p class="MsoNormal"> Kristina noted that issuance uses RAR<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://openid.bitbucket.io/connect/openid-4-verifiable-credential-issuance-1_0.html#name-request-issuance-of-a-certa">
https://openid.bitbucket.io/connect/openid-4-verifiable-credential-issuance-1_0.html#name-request-issuance-of-a-certa</a><o:p></o:p></p>
<p class="MsoNormal"> We agreed to merge<o:p></o:p></p>
<p class="MsoNormal"> PR #263: fix: relaxed nonce language to support stateless implementations<o:p></o:p></p>
<p class="MsoNormal"> Oliver suggested closing #263 in favor of #252<o:p></o:p></p>
<p class="MsoNormal"> Kristina was in favor of merging #263 because it clarifies the nonce language<o:p></o:p></p>
<p class="MsoNormal"> Mike suggested removing the word "valid"<o:p></o:p></p>
<p class="MsoNormal"> Merged after this change<o:p></o:p></p>
<p class="MsoNormal"> PR #252: clarified iat parameter of a proof (Issue #1568)<o:p></o:p></p>
<p class="MsoNormal"> We agreed to delete the apparently normative syntax language and instead say "using the syntax defined in RFC 7519".<o:p></o:p></p>
<p class="MsoNormal"> Merged after this change<o:p></o:p></p>
<p class="MsoNormal"> PR #255: Added Client/RP metadata for specifying trust frameworks<o:p></o:p></p>
<p class="MsoNormal"> This corresponds to issue #1551<o:p></o:p></p>
<p class="MsoNormal"> We agreed to discuss proposals for syntax there<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Issues<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://bitbucket.org/openid/connect/issues?status=new&status=open">
https://bitbucket.org/openid/connect/issues?status=new&status=open</a><o:p></o:p></p>
<p class="MsoNormal"> #1544: Requesting multiple credentials<o:p></o:p></p>
<p class="MsoNormal"> Oliver said that both kinds of multiple issuance are relevant to projects that he has<o:p></o:p></p>
<p class="MsoNormal"> Kristina proposed a simple issuance endpoint with single credential issuance and a separate one for multiple issuance<o:p></o:p></p>
<p class="MsoNormal"> There would be metadata saying if the complex one is supported<o:p></o:p></p>
<p class="MsoNormal"> Mike said that error handling for partial results is problematic<o:p></o:p></p>
<p class="MsoNormal"> It would require special code not needed in the simple case<o:p></o:p></p>
<p class="MsoNormal"> George agreed on keeping them separate<o:p></o:p></p>
<p class="MsoNormal"> Oliver said that issuing the same credential in different formats is different than issuing multiple distinct credentials<o:p></o:p></p>
<p class="MsoNormal"> He sees value in both of them<o:p></o:p></p>
<p class="MsoNormal"> He said that the former case is easier<o:p></o:p></p>
<p class="MsoNormal"> Mark Haine pointed out the Selective Abort and Omit feature for comparison<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://openid.bitbucket.io/ekyc/openid-connect-advanced-syntax-for-claims.html">
https://openid.bitbucket.io/ekyc/openid-connect-advanced-syntax-for-claims.html</a><o:p></o:p></p>
<p class="MsoNormal"> Oliver asked if we should create a PR defining a multiple issuance endpoint<o:p></o:p></p>
<p class="MsoNormal"> Kristina said that we should first agree on what it should do<o:p></o:p></p>
<p class="MsoNormal"> Oliver asked about use cases where you always want to issue a credential in multiple formats<o:p></o:p></p>
<p class="MsoNormal"> We discussed whether the simple endpoint should be mandatory to implement<o:p></o:p></p>
<p class="MsoNormal"> Mike thought so, so that simple clients would always work<o:p></o:p></p>
<p class="MsoNormal"> Others discussed possibly making both endpoints the same<o:p></o:p></p>
<p class="MsoNormal"> Mike said that they're likely syntactically incompatible<o:p></o:p></p>
<p class="MsoNormal"> Tobias believes the simple case must be preserved<o:p></o:p></p>
<p class="MsoNormal"> George said that we don't know what the syntax is for the multiple issuance use cases<o:p></o:p></p>
<p class="MsoNormal"> Kristina asked if Oliver could suggest multiple-issuance syntax<o:p></o:p></p>
<p class="MsoNormal"> Oliver said that he could do that this week<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Next Call<o:p></o:p></p>
<p class="MsoNormal"> The next call will be Monday, August 7, 2022 at 4pm Pacific Time<o:p></o:p></p>
</div>
</body>
</html>