<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
@font-face
{font-family:"Work Sans";
panose-1:0 0 0 0 0 0 0 0 0 0;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
font-size:11.0pt;
font-family:"Calibri",sans-serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
span.gmailsignatureprefix
{mso-style-name:gmail_signature_prefix;}
span.EmailStyle20
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;
mso-ligatures:none;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="blue" vlink="purple" style="word-wrap:break-word">
<div class="WordSection1">
<p class="MsoNormal">Hi Atul,<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Read over the interop profile and this is something we talked about previously around Session Revoked (<a href="https://openid.net/specs/openid-caep-specification-1_0.html#rfc.section.3.1">https://openid.net/specs/openid-caep-specification-1_0.html#rfc.section.3.1</a>).<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">The interop profile says that implementation MAY choose to support one or more of the following which includes session revocation/logout or Credential Change. Session Revoked signals that the session(s) identified by the subject or implied
subjects have been revoked. What I think may be missing is the reconciliation aspect of revoking a session. A signal / event that indicates that consumers should revoke a session versus a session has been revoked is different.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">As a transmitter, when a session-revoked event is emitted to subscribers is it implied that there has been a session revoked or that the subscribers should revoke a session? I think the session revoked event can be misconstrued and is more
of an indicator that something has been done (i.e. session revoked) without a leading event that says you should revoke the session for said subject(s). I see this as missing a leading indicator in order to inform other receivers and transmitters that effectively
the security signal was handled accordingly…. Like a ledger. <o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<p class="MsoNormal">Thanks,<br>
Sean<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
<div style="border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b><span style="font-size:12.0pt;color:black">From: </span></b><span style="font-size:12.0pt;color:black">Openid-specs-risc <openid-specs-risc-bounces@lists.openid.net> on behalf of Atul Tulshibagwale via Openid-specs-risc <openid-specs-risc@lists.openid.net><br>
<b>Reply-To: </b>Atul Tulshibagwale <atul@sgnl.ai><br>
<b>Date: </b>Monday, November 27, 2023 at 6:06 PM<br>
<b>To: </b>OpenID RISC List <openid-specs-risc@lists.openid.net><br>
<b>Subject: </b>[Openid-specs-risc] Agenda for tomorrow's call<o:p></o:p></span></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p style="background:lightgrey"><b><span style="color:black">This Message is From an External Sender</span></b><span style="color:black"><br>
Caution: Do not click links or open attachments unless you recognize the sender and know the content is safe.</span><o:p></o:p></p>
</div>
<div>
<div>
<p class="MsoNormal">Hi all,<o:p></o:p></p>
<div>
<p class="MsoNormal">I've added items from Apoorva and Shayne's review of the interop profile in the
<a href="https://urldefense.com/v3/__https:/hackmd.io/@oidf-wg-sse/wg-meeting-20231128__;!!Om87Lau1Cg!OzF6ziJd8D8ixrgUgQfLzjGEW8qCyAIDk0q-ZJjfuIw-GBo-j6NFGAkSsidAMcSkhQkuDehInDgEMqfxbvth8gYl9VdxEo5BCVo$">
agenda of tomorrow's call</a>. Please review the draft of the <a href="https://urldefense.com/v3/__https:/sgnl-ai.github.io/caep-interop/caep-interoperability-profile-1_0.html__;!!Om87Lau1Cg!OzF6ziJd8D8ixrgUgQfLzjGEW8qCyAIDk0q-ZJjfuIw-GBo-j6NFGAkSsidAMcSkhQkuDehInDgEMqfxbvth8gYl9VdxBlNABIs$">interop
profile</a> and comment via email to this list with your review.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">Thanks,<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal">Atul<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<p class="MsoNormal"><span class="gmailsignatureprefix">-- </span><o:p></o:p></p>
<div>
<div>
<table class="MsoNormalTable" border="0" cellspacing="0" cellpadding="0" style="border-collapse:collapse">
<tbody>
<tr>
<td style="padding:0in 0in 0in 0in">
<p style="margin:0in"><a href="https://urldefense.com/v3/__https:/sgnl.ai__;!!Om87Lau1Cg!OzF6ziJd8D8ixrgUgQfLzjGEW8qCyAIDk0q-ZJjfuIw-GBo-j6NFGAkSsidAMcSkhQkuDehInDgEMqfxbvth8gYl9Vdxy3gkfDE$" target="_blank"><span style="color:windowtext;text-decoration:none"><span style="font-family:"Work Sans";color:#1155CC;border:none windowtext 1.0pt;padding:0in"><img border="0" width="137" height="68" style="width:1.427in;height:.7083in" id="_x0000_i1028" src="cid:~WRD3797.jpg" alt="Image removed by sender."></span></span></a><o:p></o:p></p>
</td>
<td valign="top" style="padding:5.0pt 5.0pt 5.0pt 5.0pt;overflow:hidden">
<p style="margin:0in"><span style="font-family:"Work Sans";color:black">Atul Tulshibagwale</span><o:p></o:p></p>
<p style="margin:0in"><span style="font-family:"Work Sans";color:#666666">CTO </span>
<o:p></o:p></p>
<p style="margin:0in"><span style="font-size:7.5pt;font-family:"Work Sans";color:#1155CC;border:none windowtext 1.0pt;padding:0in"><a href="https://urldefense.com/v3/__https:/linkedin.com/in/tulshi__;!!Om87Lau1Cg!OzF6ziJd8D8ixrgUgQfLzjGEW8qCyAIDk0q-ZJjfuIw-GBo-j6NFGAkSsidAMcSkhQkuDehInDgEMqfxbvth8gYl9Vdxn8ofdiE$" target="_blank"><span style="color:#1155CC;text-decoration:none"><span style="color:blue"><img border="0" width="20" height="27" style="width:.2083in;height:.2812in" id="_x0000_i1027" src="cid:~WRD3797.jpg" alt="Image removed by sender."></span></span></a></span><span style="font-size:7.5pt;font-family:"Work Sans";color:black;border:none windowtext 1.0pt;padding:0in"><a href="https://urldefense.com/v3/__https:/twitter.com/zirotrust__;!!Om87Lau1Cg!OzF6ziJd8D8ixrgUgQfLzjGEW8qCyAIDk0q-ZJjfuIw-GBo-j6NFGAkSsidAMcSkhQkuDehInDgEMqfxbvth8gYl9Vdxl16cg7o$" target="_blank"><span style="color:black;text-decoration:none"><span style="color:blue"><img border="0" width="20" height="27" style="width:.2083in;height:.2812in" id="_x0000_i1026" src="cid:~WRD3797.jpg" alt="Image removed by sender."></span></span></a></span><span style="font-size:7.5pt"><a href="mailto:atul@sgnl.ai" target="_blank"><span style="color:windowtext;text-decoration:none"><span style="color:blue;border:solid windowtext 1.0pt;padding:0in"><img border="0" width="21" height="21" style="width:.2187in;height:.2187in" id="_x0000_i1025" src="cid:~WRD3797.jpg" alt="Image removed by sender."></span></span></a></span><o:p></o:p></p>
</td>
</tr>
</tbody>
</table>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</div>
</div>
</div>
</div>
</body>
</html>