Minutes - 15 Dec 2003

[Tim Moses <tim.moses@entrust.com>]

Minutes
Meeting: OASIS DSS
Date: 15 Dec 2003
Attendees:

Dimitri Andivahis, Surety
Juan-Carlos Cruellas, self
Frederick Hirsch, Nokia Mobile Phones
Pieter Kasselman, BeTrusted
Andreas Kuehne, self
Hal Lockhart, BEA Systems
Mike McIntosh, IBM
Tim Moses, Entrust 
Trevor Perrin, self
Nick Pope, self
John Ross, self

1.	Quorum was achieved.
2.	The meeting agenda was approved.
3.	Minutes of the meetings on 17th November and 1st December were
approved.
4.	Outstanding actions:

03-11-03-07 - Completed.  See Working Draft-8.

03-11-04-1 - Ongoing.  Hal identified two cases: 1) the requestor identity
is vouched for by a trusted party using a certificate, ticket or license;
and 2) the identity is claimed but not vouched for.  The request protocol
includes an element for a claimed identity.  If a trusted party vouched for
the identity, then the claimed identity element is redundant.  The semantics
of the claimed identity element are not explicitly stated.  Trevor suggested
that the profiles should deal with this question.  It may be that this
element is used by the requestor to indicate which of the identities
asserted by the trusted party is to be included in the response.  

Action: Trevor is to add a note in the core document to indicate that
profiles must explain the semantics of the claimed identity element.

03-11-17-3 - Ongoing.  Juan-Carlos has circulated a proposal.  Discussion
should continue by email.

03-11-17-4 - Completed.
03-12-1-1 - Completed.
03-12-1-2 - Completed.
03-12-1-3 - Completed.

5.	Core document - There are no outstanding issues.  Trevor suggests
that people need more time to review Working Draft 8.
6.	Profile documents - Nick suggested that further updates to the core
document should only result from work on profiles.  It was agreed to shift
the group's focus to the profiles.
7.	The following candidate profiles were identified:

CMS & S/MIME
	XAdES 
	EPM 
	WS-Security 
	code-signing JARs
	notary service
	Time-stamp 
	Corporate seals
	Court-filing integrity digest

It was agreed that the profiles will be specified in separate documents,
possibly published at the same time as the core specification.  Nick
suggested that the champion for a particular profile should provide a
discussion of its characteristics for the next meeting.  Trevor suggested
that we could develop a profile template by tackling one particular profile;
for instance, the time-stamp one.

Juan-Carlos offered to work on the XAdES profile.  Frederick expressed an
interest in the WS-Security profile.  Nick expressed an interest in the
corporate seal profile.  And Pieter expressed an interest in the
code-signing profile.  It is anticipated that Steve Gray and Ed Shallow will
work on the EPM profile.

Juan-Carlos mentioned that there will be an XAdES interop event in November
and that it would be valuable to use a DSS implementation for that event.

Trevor said that it would be valuable to know when setting priorities who
will be implementing which profiles.

It was mentioned that three organizational members must attest that they are
successfully using the specification in order to progress it to OASIS
Standard.  Hal pointed out that the TC can define what is meant by
"successfully using".

Action: Juan-Carlos and Nick are to request expressions of interest in
developing profiles for the next meeting.

Action: All who are interested in developing a profile are to provide a
discussion of the proposed characteristics of the profile by the next
meeting.

8.	Next meeting - 12th Jan 2004.

Best wishes for the season to all our readers.
-----------------------------------------------------------------
Tim Moses
613.270.3183