[Openid-specs-digital-credentials-protocols] SIOP/DCP WG call notes Oct-19-2023

Kristina Yasuda Kristina.Yasuda at microsoft.com
Thu Oct 26 06:53:00 UTC 2023 

Hi All,
Here are the minutes from last week's WG call. I apologize for sending late and must admit these notes are not complete...


  *   Introductions
     *   Lukasz  Jaromin - co-founder of Cloudentity

  *   IIW
     *   OpenID4VC 101 session got very advanced questions from the audience, which is a good sigh.
     *   Interop profiles convergence discussion (DIF JWT VC profile, DIIP, HAIP, etc.) was good and helped identify emerging common ground.
     *   Google is engaging on the browser API conversation and are adjusting the plans based on the feedback from the groups including this WG. Next step is to prototype what Google has built. https://github.com/WICG/identity-credential/issues/36
     *   SIOP/DCP WG meeting on Monday before IIW - Joseph has sent out notes. Several PRs/issues moved forward: credential instance identifier in the credential request, credentials_supported identifier in the issuer metadata, etc.
  *   Advanced flow PR
     *   Three options: 1/ add verifier authentication to the first step; 2/ add user friction in the wallet when it receives the request from the verifier; 3/ do not return anything that can be used for fingerprinting the wallet in the response
     *   Joseph suggested we go back to agreeing on the requirements: prevent fingerprinting, etc. torsten's (PR Author's) main goal was improve the wallet picking experience.
     *   Torsten suggested that we need to agree how much verifier needs to communicate in the request.
     *   Brian and Kristina were in favor of option 3, because authenticating the verifier is not the easy thing to do.
     *   Agreed to set up a special topic call
  *   PR 65: credential instance identifier
     *   Kristina to add explanation what is credential instance per Daniel's comment - rest looks good.
     *   Pedro expressed concern that a term instance is used for credentials not being issued yet - Torsen said that instance can refer to a not yet issued credentials - there was no objections to that opinion.
  *   PR 86: reviews requested

Best,
Kristina
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-digital-credentials-protocols/attachments/20231026/34fc1592/attachment-0001.html>

More information about the Openid-specs-digital-credentials-protocols mailing list