This XG closed in July 2010. See the final report.
The mission of this group is to create an open security protocol to solve a fundamental Internet security problem. Specifically, when two web applications communicate through a potentially untrusted user they do not have any standard way of mutually authenticating each other and establishing a trusted channel.
See the charter for more information.