[Openid-specs-digital-credentials-protocols] [agenda] APAC-friendly DCP WG + SIOP call (PST midday)

Rajvardhan Deshmukh (rajvdesh) rajvdesh at cisco.com
Tue Sep 3 20:29:02 UTC 2024 

Hi All,

Below are the notes for DCP session on 3rd Sept 2024

Attendees(19):
Rajvardhan Deshmukh
Joseph Heenan
Kristina Yasuda
Stece Venema(Microsoft)
Michael Jones
Ryan Galluzzo, NIST ACD
David Waite
Martijn Haring
Brian Campbell
Tim Cappali (Okta)
Andres Olav
Alan Wang
Jan Vereecken
Sebastien Bahloul (IDEMIA/AFNOR)
Daniel Fett
Oliver Terbu
Nemanja Patrnogic
Bjorn Hjelm
Christian Bormann

Notes:

EU Wallet competition 8 out of 11 implementers will move to next round

Reminder to register for mtg at Cisco on the morning of 28Oct

  *   OIDF https://openid.net/registration-oidf-workshop-cisco-october-28-2024/
  *   OIDF DCP https://www.eventbrite.com/e/oidf-dcp-working-group-hybrid-meeting-at-cisco-monday-october-28-2024-tickets-991309442227

The immediate goal is to get OpenID for VP and VCI in EU draft https://ec.europa.eu/info/law/better-regulation/have-your-say/initiatives/14339-European-Digital-Identity-Wallets-protocols-and-interfaces-to-be-supported_en
Want to have a 1.0 version for both so that they can be included in this, it's deadline is the end of the year.
These changes should have open PR's by the end of next week.
Mike created a diagram https://excalidraw.com/#json=DAT3jzu7437XtFby-111A,KGpXQz9EIXrwmkYRhoMg6Q
No deadlines for 1.1 and 2.0 as of now.

Question for all:
Does anyone have topics that will be breaking changes and haven't been included in this diagram?

https://github.com/openid/OpenID4VCI/pull/381 German implementation has a nonce endpoint.
Should this be protected by auth protection or not? Unprotected is preferred by most as if we have DPoP, it adds cognitive complexity.

https://github.com/openid/OpenID4VP/pull/237
Define constraints for new rules to safely work with the rules defined in the PR,
to thwart downgrade attacks.
The ecosystem will have profiles/schemas.
Verifier + wallet should be on the same page about processing client ID, current PR or the client_id_schema PR doesn't solve this. Continue to think and have a discussion on this.

https://github.com/openid/OpenID4VP/pull/240/
https://github.com/openid/OpenID4VCI/issues/375

Please review the 4 PR's mentioned above.

Best,
Rajvardhan

From: Openid-specs-digital-credentials-protocols <openid-specs-digital-credentials-protocols-bounces at lists.openid.net> on behalf of Joseph Heenan via Openid-specs-digital-credentials-protocols <openid-specs-digital-credentials-protocols at lists.openid.net>
Date: Tuesday, September 3, 2024 at 11:44 AM
To: Digital Credentials Protocols List <openid-specs-digital-credentials-protocols at lists.openid.net>
Cc: Joseph Heenan <joseph at authlete.com>
Subject: [Openid-specs-digital-credentials-protocols] [agenda] APAC-friendly DCP WG + SIOP call (PST midday)
Hi All,

Below is the suggested agenda for today's DCP WG + SIOP call at 12:00 midday PT (15 minutes time), https://zoom.us/j/94085567252?pwd=cHNFMExFalhlM2MrOFhoN3J6eDRuZz09


  1.  IPR reminder/ Note-taking
  2.  Introductions/re-introductions
  3.  Agenda bashing/adoption
  4.  Events/External orgs
  5.  Update from editors/chairs on EU implementing acts
  6.  Update from editors/chairs on proposed items to prioritise & suggested plan for publishing of next revisions of VCI & VP
  7.  Update on c_nonce PR: https://github.com/openid/OpenID4VCI/pull/381
  8.  Update on Oliver/Tobias proposal for client_id_scheme security ( https://github.com/openid/OpenID4VP/issues/124 )
  9.  PRs for enabling non-breaking extensibility ready for review: https://github.com/openid/OpenID4VP/pull/240  https://github.com/openid/OpenID4VCI/pull/382
  10. Other PRs/issues needing reviews/discussions
  11. Issues ready for PRs - who can help please? https://github.com/openid/OpenID4VP/issues?q=is%3Aissue+is%3Aopen+label%3Aready-for-PR+label%3Aeditorial+no%3Aassignee
  12. Other Open PRs/Issues

Thanks

Joseph

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-digital-credentials-protocols/attachments/20240903/8fa8dfd5/attachment-0001.html>

More information about the Openid-specs-digital-credentials-protocols mailing list