DSS-X Conference Call #120, Monday, 09  Sep 2013, 1800 - 1900 CEST

1. Welcome by the chair (Juan Carlos Cruellas)


2. Minutes taker
Proposed: All write into the chat, Stefan assembles and uploads into document area.

All: Agreed.


3. Roll call

Voting members present:
  Andreas Kuehne,
  Ernst Jan van Nigtevecht,
  Juan Carlos Cruellas,
  Stefan Drees.

Acronyms/short hand: (AK, EJvN, JCC, SD)

Quorum reached.

4. Approval of the agenda

Agenda approved

5.1 Meeting minutes of #119

URL=https://www.oasis-open.org/committees/download.php/49850/dssx-119-draft-minutes-sdrees-20130624.txt
[
Minutes approved

6. Interoperability

6.1 Usage of portal, estimation of resources

JCC: Validation cases. Both: requests for the signatures generated
  and also test cases taking account of the optional inputs that appear
  in the specification without necessarily dealing with the document
  signed in the generation test cases
AK: In addition to the valid documents we need some more somehow
  broken documents to the validation.
JCC: These should include:
    - Signatures that can not be successfully validated
    - Other problems.
  Negative testcases.

JCC: kindly requests to review and comment draft on interoperability
  and conformance testing activities proposed by ETSI STF 459 for
  the next two years.

==> AP: JC to provide details on how to access and comment the document

7. Local Signature Profile

Discussion of latest changes.

EJ: received some comments from several people (AK, Pim, JC) and
  tried to resolve all the issues raised. This has included the
  production of a new example (page 9) it now contains a figure
  showing that one can delegate the actual creation of the
  signature to a lightweight css servers the reason why I have
  added that is because it reflects basis for the question of
  how to access the smart card in the local environment without
  changing the protocol: the scenario shown in the figure of
  page 9 does not require any change in the protocol.
EJ: It applies to, for instance, smartphones ... and it provides
  a lot of freedom ... . A question is the authentication,
  which should be considered. Another change in the document
  is a clause about security. At present the statements are generic,
  but I think that we need to make some statements on the
  security bindings. And there is also something on SAML.
  Question on page 13: two steps approach. We have to make
  sure that we want to also including that approach.
  Kindly request feedback on this to the rest of the team,
  and talk about that at the next call if not by email

8. AOB

JCC: Message of Martin Boßlet: react inviting to bring
  requirements and even cooperation for the review of the
  relevant documents ...

9. Next meeting: Monday 23rd September.

Agreed.

Meeting adjourned by chair.