<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Aptos;
panose-1:2 11 0 4 2 2 2 2 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
font-size:11.0pt;
font-family:"Aptos",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:#467886;
text-decoration:underline;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:11.0pt;
mso-ligatures:none;}
@page WordSection1
{size:612.0pt 792.0pt;
margin:72.0pt 72.0pt 72.0pt 72.0pt;}
div.WordSection1
{page:WordSection1;}
--></style>
</head>
<body lang="EN-GB" link="#467886" vlink="#96607D" style="word-wrap:break-word">
<div class="WordSection1">
<p class="MsoNormal">A/B Connect Atlantic Call Meeting Notes</p>
<div>
<p class="MsoNormal">12 December 2024</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal">Attendance:</p>
<p class="MsoNormal">- Mike Jones</p>
<p class="MsoNormal">- Brian Campbell</p>
<p class="MsoNormal">- Bjorn Hjelm</p>
<p class="MsoNormal">- Victor Lu</p>
<p class="MsoNormal">- Michael Fraser</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal">House Keeping</p>
<p class="MsoNormal">- Discussed the imminent change to the wg call cadence</p>
<p class="MsoNormal"> - Atlantic call Thursday weekly (7am US Pacific Time)</p>
<p class="MsoNormal"> - Pacific call Tuesday every other week (8am Japan Time)</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal">- Federation Extended Listing spec</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation-extended-listing/pull/7" title="https://github.com/openid/federation-extended-listing/pull/7">https://github.com/openid/federation-extended-listing/pull/7</a></p>
<p class="MsoNormal"> - Has 2 approvals</p>
<p class="MsoNormal"> - Will merge when a week old since raise if no further issues raised</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal">- Federation Core</p>
<p class="MsoNormal"> - Continuing to receive feedback after Security Review</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation/pull/163" title="https://github.com/openid/federation/pull/163">https://github.com/openid/federation/pull/163</a></p>
<p class="MsoNormal"> - aligning terminology when referring to trust_mark identifiers</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation/pull/164" title="https://github.com/openid/federation/pull/164">https://github.com/openid/federation/pull/164</a></p>
<p class="MsoNormal"> - prohibiting loops in trust chains</p>
<p class="MsoNormal"> - 3 approvals - will merge when a week old</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation/pull/155" title="https://github.com/openid/federation/pull/155">https://github.com/openid/federation/pull/155</a></p>
<p class="MsoNormal"> - enables multiple trust anchor identifiers in resolve requests</p>
<p class="MsoNormal"> - Michael Fraser to review after call</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation/pull/153" title="https://github.com/openid/federation/pull/153">https://github.com/openid/federation/pull/153</a></p>
<p class="MsoNormal"> - corresponds to issue 127 (<a href="https://github.com/openid/federation/issues/127" title="https://github.com/openid/federation/issues/127">https://github.com/openid/federation/issues/127</a>)</p>
<p class="MsoNormal"> - expands explanation on trust mark issuer validation</p>
<p class="MsoNormal"> - PR includes TBDs </p>
<p class="MsoNormal"> - feedback sought on this</p>
<p class="MsoNormal"> - example of issuance delegation:</p>
<p class="MsoNormal"> - in the US the department of motor vehicle (DMV) mandates inspections but delegates such inspections to vendors</p>
<p class="MsoNormal"> - DMV authorises issuance but vendor autoshop performs actual issuance</p>
<p class="MsoNormal"> - conversation ongoing with OIDF certification team</p>
<p class="MsoNormal"> - initial set of tests completed</p>
<p class="MsoNormal"> - Mike Jones to write expanded set of goals</p>
<p class="MsoNormal"> - current tests validate entity data structures - expanded tests would cover protocol testing - specifically automatic registration</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation/issues/165" title="https://github.com/openid/federation/issues/165">https://github.com/openid/federation/issues/165</a></p>
<p class="MsoNormal"> - queries a scenario where multiple trust marks can have the same ID</p>
<p class="MsoNormal"> - needs further input</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation/issues/166" title="https://github.com/openid/federation/issues/166">https://github.com/openid/federation/issues/166</a></p>
<p class="MsoNormal"> - query over trust marks without `exp` claim and their interaction with the status endpoint</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation/issues/167" title="https://github.com/openid/federation/issues/167">https://github.com/openid/federation/issues/167</a></p>
<p class="MsoNormal"> - requesting a privacy consideration section in the specification</p>
<p class="MsoNormal"> - Mike Jones looking for wider input from working group on issue</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation/issues/147" title="https://github.com/openid/federation/issues/147">https://github.com/openid/federation/issues/147</a></p>
<p class="MsoNormal"> - discussion on issues around client metadata having multiple values for client authentication in their entity statement leads to ambiguous client registrations</p>
<p class="MsoNormal"> - the suggestion to use PAR isn't a silver bullet here</p>
<p class="MsoNormal"> - Mike Jones and Michael Fraser committed to adding thoughts on the issue</p>
<p class="MsoNormal"> - <a href="https://bitbucket.org/openid/connect/issues?status=new&status=open&status=submitted&is_spam=!spam" title="https://bitbucket.org/openid/connect/issues?status=new&status=open&status=submitted&is_spam=!spam">https://bitbucket.org/openid/connect/issues?status=new&status=open&status=submitted&is_spam=!spam</a></p>
<p class="MsoNormal"> - nothing new since August in bitbucket</p>
<p class="MsoNormal"> - some pending work on separate Native App SSO specification</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal">- Federation Wallet</p>
<p class="MsoNormal"> - no pull requests</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation-wallet/issues/44" title="https://github.com/openid/federation-wallet/issues/44">https://github.com/openid/federation-wallet/issues/44</a></p>
<p class="MsoNormal"> - asks how a wallet discovers if a OID4VCI issuer uses OIDF Federation</p>
<p class="MsoNormal"> - suggested a consumer could attempt to call the well-known</p>
<p class="MsoNormal"> - Looking for further thoughts on issue</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation-wallet/issues/43" title="https://github.com/openid/federation-wallet/issues/43">https://github.com/openid/federation-wallet/issues/43</a></p>
<p class="MsoNormal"> - proposes a mechanism to alias an entity identifier</p>
<p class="MsoNormal"> - questions raised over integrity verification</p>
<p class="MsoNormal"> - Further comments from the working group requested</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation-wallet/issues/29" title="https://github.com/openid/federation-wallet/issues/29">https://github.com/openid/federation-wallet/issues/29</a></p>
<p class="MsoNormal"> - looking for further input from working group</p>
<p class="MsoNormal"> - <a href="https://github.com/openid/federation-wallet/issues/19" title="https://github.com/openid/federation-wallet/issues/19">https://github.com/openid/federation-wallet/issues/19</a></p>
<p class="MsoNormal"> - looking for further input from working group</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal">- OAuth Security Workshop</p>
<p class="MsoNormal"> - <a href="https://oauth.secworkshop.events/osw2025" title="https://oauth.secworkshop.events/osw2025">https://oauth.secworkshop.events/osw2025</a></p>
<p class="MsoNormal"> - <a href="https://www.harpa.is/en/oauth-security-workshop-2025" title="https://www.harpa.is/en/oauth-security-workshop-2025">https://www.harpa.is/en/oauth-security-workshop-2025</a></p>
<p class="MsoNormal"> - registration is now open</p>
<p class="MsoNormal"> </p>
<p class="MsoNormal">- IETF 122 (Bangkok) Registration is open<span style="display:none"> </span></p>
<div>
<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" width="0">
<tbody>
<tr>
<td style="padding:0cm 0cm 0cm 0cm">
<div id="LSI_marker">
<p class="MsoNormal"><span style="font-size:1.0pt"> </span></p>
</div>
</td>
</tr>
</tbody>
</table>
</div>
<p class="MsoNormal"> </p>
</div>
</div>
</body>
</html>