[Openid-specs-digital-credentials-protocols] DCP meeting minutes (2025/01/16)

Oliver Terbu oliver.terbu at mattr.global
Tue Jan 21 20:43:40 UTC 2025 

Attendees:

  *
Oliver Terbu
  *
Torsten Lodderstedt
  *
Kristina Yasuda
  *
Bjorn Hjelm
  *
Brian Campbell
  *
Christian Bormann
  *
Christopher Brown
  *
Daniel Fett
  *
Juba Saadi
  *
Nick Steele
  *
Rajvardhan Deshmukh
  *
Gareth Oliver
  *
Andreaa Prian
  *
Niels Klomp
  *
Jan Vereecken
  *
Tim Cappalli

OIDF Antitrust Policy at www.openid.net/antitrust<http://www.openid.net/antitrust> applies
ISO virtual meeting focus on HAIP was announced; registration is needed via the ISO portal
PR 374, 146:

  *   Both SessionTranscript PRs got merged in OID4VP and HAIP

PR 380 (encryption):

  *   Two options were discussed, but in the course of the discussion, the WG realized that if the WG's understanding of the purpose of the ISO requirement is clear, there is no need for this PR:
     *   option 1: set apv or apu as origin value.
     *   option 2: define a new protected header origin. do not define apv/apu values?

PR 338 (intent to retain):

  *   needs more reviewers before merging.
  *   discussed default value and agreed that default is dangerous and should therefore be interpreted as no statement / undefined.
  *   no agreement on whether it is a good idea and needed, also default values seem to be complicated which is why this might be moved to the ISO section and the ISO definition is going to be used.

Issue 298:

  *   people on the call seemed to agree on the overall approach
  *   there is support to make it an array

________________________________
From: Openid-specs-digital-credentials-protocols <openid-specs-digital-credentials-protocols-bounces at lists.openid.net> on behalf of Kristina Yasuda via Openid-specs-digital-credentials-protocols <openid-specs-digital-credentials-protocols at lists.openid.net>
Sent: Friday, January 17, 2025 9:28 PM
To: Digital Credentials Protocols List <openid-specs-digital-credentials-protocols at lists.openid.net>
Cc: Kristina Yasuda <yasudakristina at gmail.com>
Subject: [Openid-specs-digital-credentials-protocols] Documents circulated to ISO SC17 WG10 Re: [agenda] DCP WG + SIOP call

EXTERNAL EMAIL: This email originated outside of our organisation. Do not click links or open attachments unless you recognise the sender and know the content is safe.

Hi All,

Please find attached documents that OIDF liaison circulated to ISO SC17 WG10 in preparation for the virtual ISO SC17 WG10 meeting in the last week of January:

- pdf of the current version of HAIP specification
- updated status of the requirements from ISO (Google doc version is here: https://docs.google.com/document/d/1AJDDWuRG_b-MOBrAwhBoQV3dhH3LD31WNEQKzOB36SY/edit?tab=t.0#heading=h.n5zxtfsgzn5s)
Please let me know if you would like to see anything changed in this document.

The goal of this virtual ISO SC17 WG10 meeting is to get ISO's feedback on the  mdoc profile of OID4VP over the Digital Credentials API. Ideally, this part of HAIP could be considered 80-90% ready after this ISO virtual meeting - we will see.

Best,
Kristina


On Wed, Jan 15, 2025 at 8:53 PM Kristina Yasuda <yasudakristina at gmail.com<mailto:yasudakristina at gmail.com>> wrote:
Hi all,

Below is the suggested agenda for today's DCP WG + SIOP call tomorrow. After this call, we plan to submit to ISO a version of OID4VP and HAIP for review in preparation for a virtual SC17 WG10 mtg in the last week of January.

  1.  OIDF Antitrust Policy at www.openid.net/antitrust<http://www.openid.net/antitrust> applies
  2.  IPR reminder/ Note-taking
  3.  Introductions/re-introductions
  4.  Agenda bashing/adoption
  5.  Events/External orgs
     *   please register to the Hybrid meeting before OSW! https://www.eventbrite.co.uk/e/oidf-dcp-wg-hybrid-meeting-prior-to-osw-2025-tickets-1146184230889
  6.  OID4VP / HAIP: Topics we need to tackle before ISO's virtual meeting in the last week of january (they are labelled ISO_VirtualMeeting):
     *   merged! https://github.com/openid/OpenID4VP/pull/374; https://github.com/openid/oid4vc-haip/pull/146
     *   would be good to merge after Thu WG call: https://github.com/openid/OpenID4VP/pull/338
     *   highest priority: seems that currently proposed solution is to add origin to the protected header to meet an ISO requirement "Response encryption authentication must be bound to the origin, e.g. RP URL".https://github.com/openid/OpenID4VP/pull/380; https://github.com/openid/oid4vc-haip/pull/155
     *   need to come up with a solution for returning multiple credentials for one DCQL query: https://github.com/openid/OpenID4VP/issues/298
     *   Add issuer identifier for mdocs to DCQL https://github.com/openid/OpenID4VP/issues/322
     *   need to agree on apu/apv value and session transcript when multiple client_ids present in the request https://github.com/openid/OpenID4VP/pull/308

Thank you!
Kristina
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs-digital-credentials-protocols/attachments/20250121/cab0d96c/attachment-0001.htm>

More information about the Openid-specs-digital-credentials-protocols mailing list