<div style="font-family: Helvetica, sans-serif; font-size: 14px;"><span style="font-family:Helvetica;font-size:16px;orphans:auto;widows:auto;text-decoration:none;display:inline !important">Here’s today’s meeting minutes:</span><div style="font-family:Helvetica;font-size:16px;orphans:auto;widows:auto;text-decoration:none"><h1 dir="ltr" style="line-height:1.38;margin-top:24pt;margin-bottom:6pt"><span style="font-size:23pt;font-family:Arial, sans-serif;white-space:pre-wrap">July 24 DCP Working Group Call</span></h1><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">Meeting Details</span></h2><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Date:</span><span style="white-space:pre-wrap"> July 24, 2024</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Chair:</span><span style="white-space:pre-wrap"> Joseph Heenan (Torsten Lodderstedt assisting)</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Note Taker:</span><span style="white-space:pre-wrap"> Jin Wen</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Attendees:</span><span style="white-space:pre-wrap"> 13 participants including Torsten Lodderstedt, Andreea Prian, Daniel Fett, Gareth Oliver, Jan Vereecken, Klaus Roehrle (Sony), Lenah Chacha, Martijn, Max Crone (1Password), Rene Leveille (1Password), David Chadwick, Joseph Heenan, and Gail Hodges</span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">1. Administrative Items</span></h2><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">Code of Conduct and Policies</span></h2><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:12pt"><span style="white-space:pre-wrap">Standard acknowledgment of Code of conduct/Antitrust policy/IPR policy</span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">Introductions and Agenda</span></h2><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="white-space:pre-wrap">No new attendees introduced</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="white-space:pre-wrap">Agenda approved without changes</span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">2. Events</span></h2><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">IETF Madrid (July 21-25)</span></h2><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:12pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">Joseph Heenan provided a debrief from the OAUTH session:</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">SD-JWT VC Discussion:</span><span style="white-space:pre-wrap"> Main topic relevant to the working group was ongoing discussion about "bids" text in SD-JWT VC that was being pushed for removal</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Poll Results:</span><span style="white-space:pre-wrap"> Overwhelming favor for removing the problematic text, with formal decision to be repeated on mailing list</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Client ID Prefix Draft:</span><span style="white-space:pre-wrap"> Discussion on draft by Aaron, Daniel, and Joseph based on current work, but ran out of time</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Next Steps:</span><span style="white-space:pre-wrap"> Interim meeting to be scheduled for adoption discussion</span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">3. General Updates</span></h2><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">VCI Interop Test Results (July 16)</span></h3><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:12pt"><span style="white-space:pre-wrap">Initial results completed, with Gail Hodges presenting detailed findings at end of call</span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Conformance Test Updates</span></h3><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Confirmed tests available for VCI versions from public review</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="white-space:pre-wrap">DC API tests available in both cases</span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">4. OpenID4VCI 1.0 Pull Requests</span></h2><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Major Merged PR</span></h3><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Presentation During Issuance</span><span style="white-space:pre-wrap"> (</span><a href="https://github.com/openid/OpenID4VCI/pull/509" style="text-decoration:none"><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/OpenID4VCI/pull/509</span></a><span style="white-space:pre-wrap">): Already merged, addressed security issues with redirect flows</span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Pending PRs Requiring Review</span></h3><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Application Encryption Security Consideration #569</span></h3><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:4pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">(</span><a href="https://github.com/openid/OpenID4VCI/issues/569" style="text-decoration:none"><span style="font-size: 11pt; font-family: Arial, sans-serif; text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/OpenID4VCI/issues/569</span></a><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">)</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Status:</span><span style="white-space:pre-wrap"> Ready to merge with 3 approvals and no outstanding comments</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Purpose:</span><span style="white-space:pre-wrap"> Explains what application layer encryption added in VCI achieves and its limitations</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Action:</span><span style="white-space:pre-wrap"> Torsten volunteered to review</span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Credential and Deferred Credential Endpoint Unification #583</span></h3><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:4pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">(</span><a href="https://github.com/openid/OpenID4VCI/issues/583" style="text-decoration:none"><span style="font-size: 11pt; font-family: Arial, sans-serif; text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/OpenID4VCI/issues/583</span></a><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">)</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Presenter:</span><span style="white-space:pre-wrap"> Gareth Oliver</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Purpose:</span><span style="white-space:pre-wrap"> Merge deferred credential endpoint text into credential endpoint to ensure consistent credential responses</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Goal:</span><span style="white-space:pre-wrap"> Prevent different behaviors between endpoints while maintaining current normative requirements</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Concerns:</span><span style="white-space:pre-wrap"> Questions raised about whether this allows credential endpoint to accept deferred requests</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Discussion:</span><span style="white-space:pre-wrap"> Clarification needed on polymorphic credential request prevention</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Action:</span><span style="white-space:pre-wrap"> Torsten volunteered to review</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">Editorial PRs</span></h2><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Multiple editorial pull requests open requiring 1-2 reviews each</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="white-space:pre-wrap">Goal to merge these before next revision publication</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">5. HAIP (High Assurance Interoperability Profile) Pull Requests</span></h2><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Credentials Without Cryptographic Holder Binding #210 </span></h3><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">(</span><a href="https://github.com/openid/oid4vc-haip/pull/210" style="text-decoration:none"><span style="font-size: 11pt; font-family: Arial, sans-serif; text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/pull/210</span></a><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">)</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Presenter:</span><span style="white-space:pre-wrap"> Torsten Lodderstedt</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Purpose:</span><span style="white-space:pre-wrap"> Allow HAIP use with credentials not requiring cryptographic holder binding</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Rationale:</span><span style="white-space:pre-wrap"> High assurance can be achieved through strong data binding to credential subject, even without cryptographic key binding</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Benefits:</span><span style="white-space:pre-wrap"> Enables long-living credentials that don't require reissuance when changing devices</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Discussion:</span><span style="white-space:pre-wrap"> Questions raised about definition of "high assurance" in this context</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Action:</span><span style="white-space:pre-wrap"> Issue (</span><a href="https://github.com/openid/oid4vc-haip/issues/189" style="text-decoration:none"><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/issues/189</span></a><span style="white-space:pre-wrap">) to be updated with clarification of high assurance definition</span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">FAPI2 Requirements #214</span></h3><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:4pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">(</span><a href="https://github.com/openid/oid4vc-haip/pull/214" style="text-decoration:none"><span style="font-size: 11pt; font-family: Arial, sans-serif; text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/pull/214</span></a><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">)</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Purpose:</span><span style="white-space:pre-wrap"> Mandate use of most FAPI2 requirements</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Key Requirements:</span><span style="font-weight:700;white-space:pre-wrap"><br><br></span></p></li><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">MUST support sender-constrained tokens using DPoP</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">MUST follow FAPI2 Security Profile with exception for client authentication using Wallet Attestations</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Status:</span><span style="white-space:pre-wrap"> Small PR requiring reviews</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Key Attestation Wording Modification #217</span></h3><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:4pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">(</span><a href="https://github.com/openid/oid4vc-haip/pull/217" style="text-decoration:none"><span style="font-size: 11pt; font-family: Arial, sans-serif; text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/pull/217</span></a><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">)</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Presenter:</span><span style="white-space:pre-wrap"> Torsten Lodderstedt</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Key Changes:</span><span style="font-weight:700;white-space:pre-wrap"><br><br></span></p></li><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Wallets MUST support key attestations</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">For interoperability: attestations MUST conform to Annex D of OpenID4VCI</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Otherwise: other key attestation formats may be used</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Batch issuance: all public keys SHOULD be attested within single key attestation</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Background:</span><span style="white-space:pre-wrap"> Addresses different objectives for key attestations (interoperability vs. native formats)</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Action:</span><span style="white-space:pre-wrap"> Reviews requested from Martijn and </span><span style="font-size:12pt;white-space:pre-wrap">Hicham Lozi (</span><a href="https://github.com/hlozi" style="text-decoration:none"><span style="font-weight: 700; text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">hlozi</span></a><span style="font-weight: 700; text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">)</span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">nbf Claim Mandate #165</span></h3><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:4pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">(</span><a href="https://github.com/openid/oid4vc-haip/pull/165" style="text-decoration:none"><span style="font-size: 11pt; font-family: Arial, sans-serif; text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/pull/165</span></a><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">)</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Purpose:</span><span style="white-space:pre-wrap"> Make nbf (not before) claim mandatory for credential issuer and authorization server metadata publication</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Status:</span><span style="white-space:pre-wrap"> Requires review</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">6. HAIP Open Issues</span></h2><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Ephemeral Encryption Keys #194</span></h3><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap"> (</span><a href="https://github.com/openid/oid4vc-haip/issues/194" style="text-decoration:none"><span style="font-size: 11pt; font-family: Arial, sans-serif; text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/issues/194</span></a><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">)</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Question:</span><span style="white-space:pre-wrap"> Should ephemeral encryption keys be required?</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Background:</span><span style="white-space:pre-wrap"> HAIP mandates encryption but doesn't require ephemeral keys</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Consensus:</span><span style="white-space:pre-wrap"> Working group agreed to make ephemeral encryption keys mandatory</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Implementation:</span><span style="white-space:pre-wrap"> Would require passing JWKS within client metadata in requests</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Action:</span><span style="white-space:pre-wrap"> Lucas from Radian volunteered to create PR</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Cross-Device Flows #98</span></h3><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap"> (</span><a href="https://github.com/openid/oid4vc-haip/issues/98" style="text-decoration:none"><span style="font-size: 11pt; font-family: Arial, sans-serif; text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/issues/98</span></a><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">)</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Question:</span><span style="white-space:pre-wrap"> Should redirect_uri be required in cross-device scenarios?</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Cross-reference:</span><span style="white-space:pre-wrap"> Related to issue (</span><a href="https://github.com/openid/oid4vc-haip/issues/189" style="text-decoration:none"><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/issues/189</span></a><span style="white-space:pre-wrap">)</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Security Concern:</span><span style="white-space:pre-wrap"> Traditional cross-device flow not phishing resistant</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Discussion Points:</span><span style="font-weight:700;white-space:pre-wrap"><br><br></span></p></li><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">High assurance may require same-device flows or DC API with proximity detection</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Similar to German ARef approach limiting to same-device for high assurance</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Action:</span><span style="white-space:pre-wrap"> Daniel Fett assigned to analyze and provide recommendations</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">SD-JWT IAT Claim #29</span></h3><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:4pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">(</span><a href="https://github.com/openid/oid4vc-haip/issues/29" style="text-decoration:none"><span style="font-size: 11pt; font-family: Arial, sans-serif; text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/issues/29</span></a><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">)</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Question:</span><span style="white-space:pre-wrap"> Should iat (issued at) claim be selectively disclosable in SD-JWT during presentation?</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Current State:</span><span style="white-space:pre-wrap"> HAIP requires IAT in SD-JWT but prohibits selective disclosure</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Daniel's Suggestion:</span><span style="white-space:pre-wrap"> Remove extra rules and follow whatever SD-JWT VC specification decides</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Discussion:</span><span style="white-space:pre-wrap"> Questions about user experience implications and consistency with mDoc approach</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Action:</span><span style="white-space:pre-wrap"> Further discussion needed, particularly regarding mDoc expert input</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">7. Interoperability Test Results</span></h2><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Test Overview</span></h3><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:12pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">Gail Hodges presented comprehensive results from July 16 pairwise interoperability testing. The results were consistent across a range of scenarios supported by the OpenID4VCI Specification, with implementers supporting one or multiple configurations of OpenID4VCI</span></p><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Test Statistics</span></h3><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Total Possible Pairs:</span><span style="white-space:pre-wrap"> 59</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Pairs Tested:</span><span style="white-space:pre-wrap"> 47</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Success Rate:</span><span style="white-space:pre-wrap"> 87% passed successfully</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Resolvable Issues:</span><span style="white-space:pre-wrap"> 11% failed with resolvable issues</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Unresolved Issues:</span><span style="white-space:pre-wrap"> 2% failures without immediately obvious solutions</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Test Configurations</span></h3><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:12pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">All tests used OpenID4VCI with various configurations:</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">SD-JWT with HAIP mode:</span><span style="white-space:pre-wrap"> Custom URI initiated, wallet attestation-based client authentication with x5c header</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">SD-JWT with private_key_jwt:</span><span style="white-space:pre-wrap"> Custom URI initiated, client assertion authentication</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">SD-JWT without authentication:</span><span style="white-space:pre-wrap"> Custom URI initiated, no client authentication</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">mDoc without authentication:</span><span style="white-space:pre-wrap"> Custom URI initiated, no client authentication</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Participating Organizations</span></h3><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:12pt"><span style="font-size:11pt;font-family:Arial, sans-serif;font-weight:700;white-space:pre-wrap">7 Issuers and 5 Wallets:</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Bundesdruckerei GmbH</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Fikua</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">MATTR</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Open Wallet Foundation (Android "Multipaz")</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Lissi GmbH</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Meeco</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">MyMahi Wallet</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="white-space:pre-wrap">OpenID Foundation (open source tests)</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Conclusions</span></h3><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="white-space:pre-wrap">No material concerns identified with specifications or OIDF open source tests</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Results demonstrate strong interoperability across different implementation approaches</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="white-space:pre-wrap">Test suites proven effective for validation</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Upcoming Milestones</span></h3><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">End of September:</span><span style="white-space:pre-wrap"> Self-certification opening planned once negative tests incorporated</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">8. Pending Issues Review</span></h2><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:12pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">Joseph Heenan highlighted issues marked as "pending close" in HAIP repository:</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Action:</span><span style="white-space:pre-wrap"> Community members requested to review</span><a href="https://github.com/openid/oid4vc-haip/issues?q=is%3Aissue+state%3Aopen+label%3Apending-close" style="text-decoration:none"><span style="white-space:pre-wrap"> </span><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">pending-close labeled issues</span><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);"><br><br></span></a></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Timeline:</span><span style="white-space:pre-wrap"> Issues will be closed in approximately one week without comments</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Purpose:</span><span style="white-space:pre-wrap"> Clean up issues that are covered by other issues or no longer applicable</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">9. Announcements</span></h2><h3 dir="ltr" style="line-height:1.38;margin-top:16pt;margin-bottom:4pt"><span style="font-size: 14pt; font-family: Arial, sans-serif; white-space: pre-wrap; color: rgb(67, 67, 67);">Artificial Intelligence Identity Management (AIIM) Community Group</span></h3><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:12pt"><span style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre-wrap">Max Crone announced upcoming discussion:</span></p><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Topic:</span><span style="white-space:pre-wrap"> Including Verifiable Credentials in Model Context Protocol</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Timing:</span><span style="white-space:pre-wrap"> Immediately following this call</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="font-weight:700;white-space:pre-wrap">Relevance:</span><span style="white-space:pre-wrap"> Significant interest for DCP WG members</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">10. Action Items Summary</span></h2><ol style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="list-style-type:decimal;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Reviews Needed:</span><span style="font-weight:700;white-space:pre-wrap"><br><br></span></p></li><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Application encryption security consideration PR (Torsten assigned)</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Credential/Deferred endpoint unification (</span><a href="https://github.com/openid/OpenID4VCI/issues/583" style="text-decoration:none"><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/OpenID4VCI/issues/583</span></a><span style="white-space:pre-wrap">) (additional reviewers needed)</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">FAPI2 requirements PR (</span><a href="https://github.com/openid/oid4vc-haip/pull/214" style="text-decoration:none"><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/pull/214</span></a><span style="white-space:pre-wrap">)</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Key attestation wording PR (</span><a href="https://github.com/openid/oid4vc-haip/pull/217" style="text-decoration:none"><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/pull/217</span></a><span style="white-space:pre-wrap">) (Martijn, Klaus)</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">nbf claim mandate PR (</span><a href="https://github.com/openid/oid4vc-haip/pull/165" style="text-decoration:none"><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/pull/165</span></a><span style="white-space:pre-wrap">)</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><li dir="ltr" style="list-style-type:decimal;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Issue Analysis:</span><span style="font-weight:700;white-space:pre-wrap"><br><br></span></p></li><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">High assurance definition clarification (</span><a href="https://github.com/openid/oid4vc-haip/issues/189" style="text-decoration:none"><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/issues/189</span></a><span style="white-space:pre-wrap">) (Torsten assigned)</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Cross-device flow security analysis (</span><a href="https://github.com/openid/oid4vc-haip/issues/98" style="text-decoration:none"><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/issues/98</span></a><span style="white-space:pre-wrap">) (Daniel assigned)</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><li dir="ltr" style="list-style-type:decimal;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Pull Requests to Create:</span><span style="font-weight:700;white-space:pre-wrap"><br><br></span></p></li><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Ephemeral encryption keys mandate (</span><a href="https://github.com/openid/oid4vc-haip/issues/194" style="text-decoration:none"><span style="text-decoration: underline; text-decoration-skip-ink: none; white-space: pre-wrap; color: rgb(17, 85, 204);">https://github.com/openid/oid4vc-haip/issues/194</span></a><span style="white-space:pre-wrap">) (Lucas assigned)</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><li dir="ltr" style="list-style-type:decimal;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="font-weight:700;white-space:pre-wrap">Administrative:</span><span style="font-weight:700;white-space:pre-wrap"><br><br></span></p></li><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Review pending-close issues within one week</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="list-style-type:circle;font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="white-space:pre-wrap">Multiple editorial PR reviews for VCI</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul></ol><h2 dir="ltr" style="line-height:1.38;margin-top:18pt;margin-bottom:4pt"><span style="font-size:17pt;font-family:Arial, sans-serif;white-space:pre-wrap">11. Next Steps</span></h2><ul style="margin-top:0px;margin-bottom:0px;padding-inline-start:48px"><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Continue OpenID4VCI 1.0 finalization efforts</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Address HAIP normative requirements and clarifications</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:0pt"><span style="white-space:pre-wrap">Prepare for next revision publications</span><span style="white-space:pre-wrap"><br><br></span></p></li><li dir="ltr" style="font-size:11pt;font-family:Arial, sans-serif;white-space:pre"><p dir="ltr" style="line-height:1.38;margin-top:0pt;margin-bottom:12pt"><span style="white-space:pre-wrap">Monitor interoperability test suite development</span><span style="white-space:pre-wrap"><br><br></span></p></li></ul><p dir="ltr" style="line-height:1.38;margin-top:12pt;margin-bottom:12pt"><span style="font-size:11pt;font-family:Arial, sans-serif;font-weight:700;white-space:pre-wrap">Meeting Adjourned</span></p></div><br></div><div style="font-family: Helvetica, sans-serif; font-size: 14px;"><br></div>
<div style="font-family: Helvetica, sans-serif; font-size: 14px;" class="protonmail_signature_block ">
    <div class="protonmail_signature_block-user protonmail_signature_block-empty"></div>
    
            <div class="protonmail_signature_block-proton">
        Sent with <a href="https://proton.me/mail/home" target="_blank">Proton Mail</a> secure email.
    </div>
</div>