[Openid-specs-digital-credentials-protocols] minutes Re: [agenda] APAC-friendly DCP WG + SIOP call (PST midday)

Kristina Yasuda yasudakristina at gmail.com
Tue Apr 2 20:10:15 UTC 2024 

Kristina Yasuda

Joseph Heenan

John Bradley

Michael Jones

Brian Campbell

Christian Bormann

Daniel Fett

Jan Vereecken

Jin Wen

Oliver Terbu

Paul Bastian

Sudesha Shetty

Tim Cappalli

Tobias Looker

Victor Lu

Tom Jones

Gail Hodges



OSW next week. Some unconference sessions planned on client_id_scheme
issue, and wallet attestation (IETF draft) (and maybe verifier metadata,
usage of scopes in OID4VP). Will bring back the outcomes to the WG for the
WG decisions.



OID4VCI went to the First Implementer's draft!! Congratulations.


During IIW week, will cancel DCP WG calls on Tue/Thu because there is a 3h
hybrid block on Friday.



OID4VP mdoc/mdl section

   - Christian asked if we need a reference for COSE_sign1. We do not have
   reference for JSON, so probably no need.
   - Need more reviews. Tobias and Paul agreed to review.



OID4VP SD-JWT VC PR

   - Per Brian's comment, Joseph opened an issue to add sd-jwt vc mentions
   in overview #143 <https://github.com/openid/OpenID4VP/issues/143>
   - Kristina clarified that the mention of the namespace in the mdoc
   example in her comment was not meant to be applicable to sd-jwt vc
   - Jan said there are no more outstanding comments - WG agreed on track
   to get few more approvals and be merged
   - Tobias made an observation that examples in this PR use format inside
   presentation_definition. Agreed to keep it this way for the consistency
   with HAIP which says format in presentation_definition should be used,
   while keep discussing in the issue 136.



OID4VP PR 139 on nonce/state handling was merged



OID4VP Editorial PR 138 will be merged when few more reviews will come



VCI concept and terminology PR #155:
https://github.com/openid/OpenID4VCI/pull/155

   - Tobias asked if claim values are different, but subject is the same if
   it is a same or different credential datasets, and agreement was that those
   are different (new data set in the response).
   - Agreed to a new terminology "Credential (or Verifiable Credential)" to
   point to a signed credential. This spec does not differentiates (also helps
   with not to replacing all the usage of "Credential" in the spec to
   "Verifiable Credential")
   - New terminology is Credential Dataset, Credential (to mean credential
   instance), Credential Format, and Credential Configuration. There is no new
   term "Credential Instance" introduced (instead "Credential").
   - No strong objections to this current definition.
   - The logic of the current order is in the order of from the simplest to
   more complex: "credential dataset is the foundation, which becomes
   credential when issued, which can be of one of Credential Formats and based
   on the issuer's credential configuration".
   - Question: split into two PRs - one only with terminology and the other
   switching those terms throughout the spec? will leave it to Daniel, the
   author of the PR.



CA would like to propose to define a ODI4VC profile that can help US, NIST,
CA to interoperate:

   - Some of this work started this work in last IIW
   - John asked what is there other than mdoc for mDL. Kristina responded
   that there are implementations of mDL in IETF SD-JWT VC and W3C VCDM.
   - CA does not want to be a "special snowflake"
   - John pointed out that the problem is that verifier would not know what
   credential format is supported. Kristina said that in a regulated
   environment verifier would know what to expect - implies that issuers are
   issuing in those mandated formats
   - Oliver asked isn't mdoc a common denominator? Gail said sd-jwt can be
   on top of that. Who CA that supports mdoc and sd-jwt, should be testing
   against.
   - Agreed to continue at OSW/IIW.
   - Tom Jones has a proposal



Announcements

   - EU interop event profiles:
   https://drive.google.com/drive/u/3/folders/1uNFHfqV9GSi4HjZX3PCP-0m3auBDsZVR
-
   interop kickoff meeting is tomorrow
   - 9th & 11th April DCP calls cancelled due to TDI/OAuthSecWorkshop
   - Conformance team hiring
   https://openid.net/certification-program-recruiting-java-developer/



On Tue, Apr 2, 2024 at 10:07 AM Joseph Heenan via
Openid-specs-digital-credentials-protocols <
openid-specs-digital-credentials-protocols at lists.openid.net> wrote:

> Hi All,
>
> Below is the suggested agenda for today's DCP WG + SIOP call at 12:00
> midday PT. Note that for those in Europe/similar as we’ve now moved onto
> DST the call may be an hour later than you’ve been used to for the last few
> weeks.
>
> Proposed agenda for today:
>
>
>    1. IPR reminder/ Note-taking
>    2. Introductions/re-introductions
>    3. Agenda bashing/adoption
>    4. Events/External orgs
>    5. EU interop event profiles:
>    https://drive.google.com/drive/u/3/folders/1uNFHfqV9GSi4HjZX3PCP-0m3auBDsZVR
>    - interop kickoff meeting is tomorrow
>    6. 9th & 11th April DCP calls cancelled due to TDI/OAuthSecWorkshop
>    7. Conformance team hiring
>    https://openid.net/certification-program-recruiting-java-developer/
>    8. VP PRs: https://github.com/openid/OpenID4VP/pull
>    9. VP ID3 reminder: https://github.com/openid/OpenID4VP/milestone/1
>    10. VCI terminology PR; Daniel would like to confirm the terms to be
>    used before updating it: https://github.com/openid/OpenID4VCI/pull/155
>
>
> Thanks
>
> Joseph
>
> --
> Openid-specs-digital-credentials-protocols mailing list
> Openid-specs-digital-credentials-protocols at lists.openid.net
>
> https://lists.openid.net/mailman/listinfo/openid-specs-digital-credentials-protocols
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-digital-credentials-protocols/attachments/20240402/9250fc66/attachment.html>

More information about the Openid-specs-digital-credentials-protocols mailing list