<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;
mso-ligatures:standardcontextual;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#0563C1;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri",sans-serif;
mso-ligatures:standardcontextual;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="#0563C1" vlink="#954F72" style="word-wrap:break-word">
<div class="WordSection1">
<p class="MsoNormal">Spec Call Notes 20-Mar-23<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Mike Jones<o:p></o:p></p>
<p class="MsoNormal">Kristina Yasuda<o:p></o:p></p>
<p class="MsoNormal">Dima Postnikov<o:p></o:p></p>
<p class="MsoNormal">Edmund Jay<o:p></o:p></p>
<p class="MsoNormal">Andrew Hughes<o:p></o:p></p>
<p class="MsoNormal">Tobias Looker<o:p></o:p></p>
<p class="MsoNormal">Andreas Olave<o:p></o:p></p>
<p class="MsoNormal">Tom Jones<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">IETF 116 Meeting in Yokohama<o:p></o:p></p>
<p class="MsoNormal"> The meeting is next week<o:p></o:p></p>
<p class="MsoNormal"> Those attending the OAuth dinner should RSVP at
<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://docs.google.com/spreadsheets/d/1HDd6OzSo5kvvgykBqsHXE98akTXSIEK7NqMlxvdL-lM/edit#gid=0">
https://docs.google.com/spreadsheets/d/1HDd6OzSo5kvvgykBqsHXE98akTXSIEK7NqMlxvdL-lM/edit#gid=0</a><o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">OpenID4VP PRs<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://bitbucket.org/openid/connect/pull-requests/">
https://bitbucket.org/openid/connect/pull-requests/</a><o:p></o:p></p>
<p class="MsoNormal"> PR #489: OpenID4VP: direct post improvements<o:p></o:p></p>
<p class="MsoNormal"> Waiting for an approval by Oliver<o:p></o:p></p>
<p class="MsoNormal"> PR #500: Adding VP Token validation section<o:p></o:p></p>
<p class="MsoNormal"> Not yet ready for review<o:p></o:p></p>
<p class="MsoNormal"> PR #482: Added JARM encryption only security considerations<o:p></o:p></p>
<p class="MsoNormal"> Tobias talked about possible future JWE algorithms that authenticate the signer<o:p></o:p></p>
<p class="MsoNormal"> Tobias will re-review<o:p></o:p></p>
<p class="MsoNormal"> PR #495: add implementation considerations around state management (Issue #1737)<o:p></o:p></p>
<p class="MsoNormal"> Will merge after feedback from Joseph<o:p></o:p></p>
<p class="MsoNormal"> PR #496: <a href="https://bitbucket.org/openid/connect/pull-requests/496">
https://bitbucket.org/openid/connect/pull-requests/496</a><o:p></o:p></p>
<p class="MsoNormal"> Updated with editorial suggestions by Brian<o:p></o:p></p>
<p class="MsoNormal"> Merged<o:p></o:p></p>
<p class="MsoNormal"> PR #497: update URL of PE from v2.x.x to v2.0.0<o:p></o:p></p>
<p class="MsoNormal"> Updated to use stable references<o:p></o:p></p>
<p class="MsoNormal"> Merged<o:p></o:p></p>
<p class="MsoNormal"> PR #499: OID4VP fix: reference to the definition of the credential format identifiers (Issue #1847)<o:p></o:p></p>
<p class="MsoNormal"> Editorial<o:p></o:p></p>
<p class="MsoNormal"> Reviews requested<o:p></o:p></p>
<p class="MsoNormal"> PR #494: improve the description of presentation_submission (Issue #1796)<o:p></o:p></p>
<p class="MsoNormal"> Reviews requested from people familiar with PE<o:p></o:p></p>
<p class="MsoNormal"> PR #493: adding additional security considerations for PE<o:p></o:p></p>
<p class="MsoNormal"> Reviews requested from people familiar with PE<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Other PRs<o:p></o:p></p>
<p class="MsoNormal"> PR #468: First draft of OpenID 4 VC Security Analysis<o:p></o:p></p>
<p class="MsoNormal"> Reviews security of the issuer/holder/verifier model<o:p></o:p></p>
<p class="MsoNormal"> Kristina highly recommends reading it<o:p></o:p></p>
<p class="MsoNormal"> PR #472: Fixes Deferred Credential Endpoint<o:p></o:p></p>
<p class="MsoNormal"> Tightens the definition of this endpoint<o:p></o:p></p>
<p class="MsoNormal"> Oliver at Spruce is building this<o:p></o:p></p>
<p class="MsoNormal"> Reviews requested<o:p></o:p></p>
<p class="MsoNormal"> PR #463: removing the requirement around JSON-LD processing (Issue #1840)<o:p></o:p></p>
<p class="MsoNormal"> Waiting for an approval by Judith Kahrer<o:p></o:p></p>
<p class="MsoNormal"> PR #488: moved authorization_pending to token error response<o:p></o:p></p>
<p class="MsoNormal"> Reviews requested<o:p></o:p></p>
<p class="MsoNormal"> PR #384: Add a cwt proof type<o:p></o:p></p>
<p class="MsoNormal"> Maybe say ‘string-valued label “COSE_Key”’.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">OpenID4VP build pipeline<o:p></o:p></p>
<p class="MsoNormal"> HTML editor's drafts are now automatically pushed to openid.bitbucket.io/connect/<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Open Issues<o:p></o:p></p>
<p class="MsoNormal"> <a href="https://bitbucket.org/openid/connect/issues?status=new&status=open">
https://bitbucket.org/openid/connect/issues?status=new&status=open</a><o:p></o:p></p>
<p class="MsoNormal"> #1875: Differences between spec and examples in OIDVCI<o:p></o:p></p>
<p class="MsoNormal"> Apparently there's confusion between general parameters and parameters specific to particular credential formats<o:p></o:p></p>
<p class="MsoNormal"> #1825: <a href="https://bitbucket.org/openid/connect/issues/1825/openid4vci-client-identification-and">
https://bitbucket.org/openid/connect/issues/1825/openid4vci-client-identification-and</a><o:p></o:p></p>
<p class="MsoNormal"> Kristina to create a PR<o:p></o:p></p>
<p class="MsoNormal"> #1439: PE Schema Validation Problems<o:p></o:p></p>
<p class="MsoNormal"> Note this is a placeholder reminding us of issues in the PE spec<o:p></o:p></p>
<p class="MsoNormal"> #1873: Update OID4VP VCDM examples to v2.0 from 1.1<o:p></o:p></p>
<p class="MsoNormal"> We don't need to do this for the proposed Implementer's Draft<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Next Call<o:p></o:p></p>
<p class="MsoNormal"> The next call will be Thursday, March 23 at 7am Pacific Time<o:p></o:p></p>
</div>
</body>
</html>