From michael_b_jones at hotmail.com  Mon Jul 17 19:48:50 2023
From: michael_b_jones at hotmail.com (Michael Jones)
Date: Mon, 17 Jul 2023 19:48:50 +0000
Subject: [OIDFSC] Digital Credentials Protocols WG - Proposed Charter
In-Reply-To: <BD045C19-C3ED-41E1-B9C2-4CD746B36369@forgerock.com>
References: <CA+k3eCTb_Q1ycMhVW=Z1V-86d0EgGbtAYmePgK1ccm76fFST-A@mail.gmail.com>
 <BD045C19-C3ED-41E1-B9C2-4CD746B36369@forgerock.com>
Message-ID: <MW4PR02MB74281501EB604807AC683D74B73BA@MW4PR02MB7428.namprd02.prod.outlook.com>

Writing for the specs council, since no opposition to the creation of the working group was voiced and the review period has been completed, the OpenID Digital Credentials Protocols working now exists.

The next step is to hold the first meeting of the working group, at which chairs will be chosen by the working group participants.

Unofficially, since this working group largely grew out of the SIOP special topic call in the Connect working group, I suggest definitely announcing the first working group meeting on the Connect working group list, as well as at specs at openid.net<mailto:specs at openid.net>.

                                                       Congratulations!
                                                       -- Mike

From: David Luna <david.luna at forgerock.com>
Sent: Saturday, July 15, 2023 8:16 PM
To: Brian Campbell <bcampbell at pingidentity.com>
Cc: Giuseppe De Marco <gi.demarco at innovazione.gov.it>; Oliver Terbu <oliver.terbu at spruceid.com>; Gail Hodges <gail at oidf.org>; ve7jtb_fwd <ve7jtb at ve7jtb.com>; michael_b_jones at hotmail.com; nat_fwd <nat at nat.consulting>; jacob.ideskog at curity.io; Morteza Ansari <morteza at sharppics.com>; openid-specs-council at lists.openid.net; jheenan_authletefwd <joseph at authlete.com>; Takahiko Kawasaki <taka at authlete.com>; Mark <mark at considrd.consulting>; vittorio_fwd <vittorio.bertocci at okta.com>; Judith Kahrer <judith.kahrer at curity.io>; giuseppe.demarco <giuseppe.demarco at teamdigitale.governo.it>; torsten_lsfwd <torsten at lodderstedt.net>; timo at animo.id; Kristina Yasuda <Kristina.Yasuda at microsoft.com>
Subject: Re: [OIDFSC] Digital Credentials Protocols WG - Proposed Charter

That does make sense, Brian. Afraid I got  enthusiastically carried away by the thread and don?t spy the ?cc?d to proposers? line. :)
David


On 15 Jul 2023, at 22:44, Brian Campbell <bcampbell at pingidentity.com<mailto:bcampbell at pingidentity.com>> wrote:
?
I would presume the approvals need to come from the Specifications Council rather than the proposers listed on the prospective charter itself. But, if it helps, I also approve.

On Sat, Jul 15, 2023 at 6:46?AM David Luna <david.luna at forgerock.com<mailto:david.luna at forgerock.com>> wrote:
I approve.

Apologies for not seeing/replying earlier.


On 15 Jul 2023, at 11:22, Giuseppe De Marco <gi.demarco at innovazione.gov.it<mailto:gi.demarco at innovazione.gov.it>> wrote:
?
[https://ironscales-fr-logo.s3-us-west-2.amazonaws.com/forgerock-icon.png]
The ForgeRock Enterprise Security (EntSec) team finds this email suspicious! We know Giuseppe De Marco by name, but the email was sent from an unfamiliar address gi.demarco @ innovazione.gov.it<http://innovazione.gov.it/> | Know this sender?<https://members.ironscales.com/sights/info/NTk0NzA0NjAw:1qKcPv:9HXykTyo36tuJJzx9TrnRk7Yi1s/>

I approve, thank you for the reminder
________________________________
Da: Oliver Terbu <oliver.terbu at spruceid.com<mailto:oliver.terbu at spruceid.com>>
Inviato: gioved? 13 luglio 2023 16:59
A: Gail Hodges <gail at oidf.org<mailto:gail at oidf.org>>
Cc: ve7jtb_fwd <ve7jtb at ve7jtb.com<mailto:ve7jtb at ve7jtb.com>>; michael_b_jones at hotmail.com<mailto:michael_b_jones at hotmail.com> <michael_b_jones at hotmail.com<mailto:michael_b_jones at hotmail.com>>; nat_fwd <nat at nat.consulting<mailto:nat at nat.consulting>>; jacob.ideskog at curity.io<mailto:jacob.ideskog at curity.io> <jacob.ideskog at curity.io<mailto:jacob.ideskog at curity.io>>; Morteza Ansari <morteza at sharppics.com<mailto:morteza at sharppics.com>>; openid-specs-council at lists.openid.net<mailto:openid-specs-council at lists.openid.net> <openid-specs-council at lists.openid.net<mailto:openid-specs-council at lists.openid.net>>; jheenan_authletefwd <joseph at authlete.com<mailto:joseph at authlete.com>>; David Luna <david.luna at forgerock.com<mailto:david.luna at forgerock.com>>; Takahiko Kawasaki <taka at authlete.com<mailto:taka at authlete.com>>; Mark <mark at considrd.consulting<mailto:mark at considrd.consulting>>; Brian Campbell <bcampbell at pingidentity.com<mailto:bcampbell at pingidentity.com>>; vittorio_fwd <vittorio.bertocci at okta.com<mailto:vittorio.bertocci at okta.com>>; Judith Kahrer <judith.kahrer at curity.io<mailto:judith.kahrer at curity.io>>; giuseppe.demarco <giuseppe.demarco at teamdigitale.governo.it<mailto:giuseppe.demarco at teamdigitale.governo.it>>; torsten_lsfwd <torsten at lodderstedt.net<mailto:torsten at lodderstedt.net>>; timo at animo.id<mailto:timo at animo.id> <timo at animo.id<mailto:timo at animo.id>>; Kristina Yasuda <Kristina.Yasuda at microsoft.com<mailto:Kristina.Yasuda at microsoft.com>>
Oggetto: Re: [OIDFSC] Digital Credentials Protocols WG - Proposed Charter

I approve as well.

On Thu, Jul 13, 2023 at 4:57?PM Gail Hodges <gail at oidf.org<mailto:gail at oidf.org>> wrote:
Hello all

Is there anyone who has not voted yet?

I understand the process is supposed to conclude 7/15, and I have only seen a couple votes on the thread.

Gail


On Jul 6, 2023, at 7:17 AM, John Bradley via specs-council <openid-specs-council at lists.openid.net<mailto:openid-specs-council at lists.openid.net>> wrote:
? I approve as well.

Sorry, I missed the original post.



On Jul 6, 2023, at 10:10 AM, Michael Jones via specs-council <openid-specs-council at lists.openid.net<mailto:openid-specs-council at lists.openid.net>> wrote:

It appears that Kristina didn?t join the list at https://lists.openid.net/mailman/listinfo/openid-specs-council before sending the request.  Both my reply and yours are archived, which include the original request, so I think that?s good enough.

FYI, the 15-day Specs Council review period will complete on Saturday, July 15th.

                                                       -- Mike

From: Nat Sakimura <nat at nat.consulting<mailto:nat at nat.consulting>>
Sent: Monday, July 3, 2023 1:29 AM
To: Michael Jones <michael_b_jones at hotmail.com<mailto:michael_b_jones at hotmail.com>>
Cc: Kristina Yasuda <Kristina.Yasuda at microsoft.com<mailto:Kristina.Yasuda at microsoft.com>>; openid-specs-council at lists.openid.net<mailto:openid-specs-council at lists.openid.net>; jacob.ideskog at curity.io<mailto:jacob.ideskog at curity.io>; David Luna <david.luna at forgerock.com<mailto:david.luna at forgerock.com>>; Brian Campbell <bcampbell at pingidentity.com<mailto:bcampbell at pingidentity.com>>; Giuseppe De Marco <giuseppe.demarco at teamdigitale.governo.it<mailto:giuseppe.demarco at teamdigitale.governo.it>>; Oliver.terbu <Oliver.terbu at spruceid.com<mailto:Oliver.terbu at spruceid.com>>; Mark Haine <mark at considrd.consulting<mailto:mark at considrd.consulting>>; Takahiko Kawasaki <taka at authlete.com<mailto:taka at authlete.com>>; Morteza Ansari <morteza at sharppics.com<mailto:morteza at sharppics.com>>; Joseph Heenan <joseph at authlete.com<mailto:joseph at authlete.com>>; Vittorio Bertocci <vittorio.bertocci at okta.com<mailto:vittorio.bertocci at okta.com>>; Judith Kahrer <judith.kahrer at curity.io<mailto:judith.kahrer at curity.io>>; Torsten Lodderstedt <torsten at lodderstedt.net<mailto:torsten at lodderstedt.net>>; timo at animo.id<mailto:timo at animo.id>
Subject: Re: [OIDFSC] Digital Credentials Protocols WG - Proposed Charter

LGTM.

One peculiarity - the original email has not been recorded in the list archive, nor have I received it.
See https://lists.openid.net/pipermail/openid-specs-council/.
Kristina, did you get any error responses? For the recording purposes, it would be good to have it recorded.
If it is the list issue, we need to fix it.

Best wishes,

Nat

2023?7?1?(?) 13:12 Michael Jones via specs-council <openid-specs-council at lists.openid.net<mailto:openid-specs-council at lists.openid.net>>:
I approve of the formation of this working group as a specifications council member.

                                                       -- Mike

From: Kristina Yasuda <Kristina.Yasuda at microsoft.com<mailto:Kristina.Yasuda at microsoft.com>>
Sent: Friday, June 30, 2023 11:08 AM
To: openid-specs-council at lists.openid.net<mailto:openid-specs-council at lists.openid.net>
Cc: Torsten Lodderstedt <torsten at lodderstedt.net<mailto:torsten at lodderstedt.net>>; Joseph Heenan <joseph at authlete.com<mailto:joseph at authlete.com>>; Mark Haine <mark at considrd.consulting<mailto:mark at considrd.consulting>>; Oliver.terbu <Oliver.terbu at spruceid.com<mailto:Oliver.terbu at spruceid.com>>; Takahiko Kawasaki <taka at authlete.com<mailto:taka at authlete.com>>; Vittorio Bertocci <vittorio.bertocci at okta.com<mailto:vittorio.bertocci at okta.com>>; Giuseppe De Marco <giuseppe.demarco at teamdigitale.governo.it<mailto:giuseppe.demarco at teamdigitale.governo.it>>; Brian Campbell <bcampbell at pingidentity.com<mailto:bcampbell at pingidentity.com>>; michael_b_jones at hotmail.com<mailto:michael_b_jones at hotmail.com>;jacob.ideskog at curity.io<mailto:jacob.ideskog at curity.io>; Morteza Ansari <morteza at sharppics.com<mailto:morteza at sharppics.com>>; David Luna <david.luna at forgerock.com<mailto:david.luna at forgerock.com>>; timo at animo.id<mailto:timo at animo.id>; Judith Kahrer <judith.kahrer at curity.io<mailto:judith.kahrer at curity.io>>
Subject: Digital Credentials Protocols WG - Proposed Charter

Dear Specs Council,
(cc: all proposers)

Please find below text for the charter of a proposed Digital Credentials Protocols Working Group.

Thank you,
Kristina

Digital Credentials Protocols WG - Charter

1) Working Group name:
Digital Credentials Protocols Working Group

2) Purpose:
In the Issuer-Holder-Verifier Model, Issuers issue Digital Credentials to the Holder?s Wallet, which the End-User can then use to present the Digital Credentials to the Verifiers. Digital Credentials are cryptographically signed statements about a Subject, typically the Wallet Holder. Verifiers can check the authenticity of the data in the Digital Credentials and optionally enforce Key Binding, Biometrics Binding and/or Claim-based Binding i.e., ask the Wallet to prove that it is the intended Holder of the Digital Credential.

The goal of this WG is to develop OpenID specifications for the Issuer-Holder-Verifier-Model use-cases to enable issuance and presentations of the Digital Credentials of any format (IETF SD-JWTl, ISO/IEC 18013-5, etc.) and pseudonymous authentication from the End-User to the Verifier.
These specifications are aimed at enabling End-Users to gain more control, privacy, and portability over their identity information; cheaper, faster, and more secure identity verification, when transforming physical credentials into digital ones using digital credentials; and a universal approach to handle identification, authentication, and authorization in digital and physical space.

The work is planned to be done in liaison with the European Commission, Decentralized Identity Foundation (DIF), the European Telecommunications Standards Institute (ETSI), and ISO/IEC SC17 WG4 and WG10, which have expressed interest in profiling specifications proposed to be worked on in this WG. There is also a liaison with the OpenWallet Foundation (OWF), to foster implementation of the standards developed by this WG.

3) Scope:

Creation of specifications describing:

?        Issuance of Digital Credentials from the Issuer to the Wallet (acting as RP). This includes the mechanisms to specify which Digital Credentials the Issuer is capable of issuing.

?        Presentation of Digital Credentials between the Wallet (acting as IdP) and the Verifier via online (over the Internet) and proximity (near field communication) communication channels. This includes the mechanisms to specify which Digital Credentials are being requested.

?        Pseudonymous authentication from the End-User to the Verifier.

?        Interoperability profiles of the above specifications

Out of Scope:
Legal or regulatory advice, Identity Proofing, Identity information verification, new Credential formats

4) Proposed specifications:
OpenID for Verifiable Presentations
OpenID for Verifiable Credential Issuance
Self-Issued OpenID Provider v2.0
OpenID for Verifiable Presentations over BLE
OpenID Connect UserInfo Verifiable Credentials
Security and Trust in OpenID for Verifiable Credentials
OpenID4VC High Assurance Interoperability Profile with SD-JWT VC

5) Anticipated audience or users

?        Issuers of Digital Credentials

?        Verifiers Digital Credentials

?        Wallet Providers

?        Trust Framework operators

?        Regulators

?        Security Researchers

?        Developer tools & infrastructure/service provider

6) Language:
English

7) Method of work
Mailing list and telephone/internet conference calls combined with face-to-face (where needed) and
information sharing/collaborative working via online tools.

8) The basis for determining when the work is completed:
Approved ?final? specifications consistent with the purpose and scope that have been through the OpenID Foundation process including vote by the membership and running code in one or more proof-of-concept, interoperability event or commercial project.

Background info:
Related Work
The work is planned to be done in liaison with the European Commission, Decentralized Identity Foundation (DIF), ETSI, and ISO/IEC SC17 WG4 and WG10, which have expressed interest in profiling specifications proposed to be worked on in this WG.
https://openid.net/sg/openid4vc/specifications/

Proposers:
Kristina Yasuda, Microsoft
Torsten Lodderstedt, yes.com<http://yes.com/> AG
Joseph Heenan, Authlete
Mark Haine, Considrd.Consulting Limited
Oliver Terbu, Spruce Systems Inc.
Takahiko Kawasaki, Authlete
Vittorio Bertocci, Okta
Giuseppe De Marco, Dipartimento per la trasformazione digitale
Brian Campbell, Ping Identity
Michael B. Jones, independent
Jacob Ideskog, Curity AB
Morteza Ansari, independent
David Luna, ForgeRock

Timo Glastra, Animo Solutions
Judith Kahrer, Curity AB

Anticipated contributions:

  *

CONFIDENTIALITY NOTICE: This email may contain confidential and privileged material for the sole use of the intended recipient(s). Any review, use, distribution or disclosure by others is strictly prohibited.  If you have received this communication in error, please notify the sender immediately by e-mail and delete the message and any file attachments from your computer. Thank you.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openid.net/pipermail/openid-specs/attachments/20230717/d6e1a98a/attachment-0001.html>