00:04:25 <nkic> nkic has joined #crypto
00:09:12 <tantek> tantek has joined #crypto
00:17:43 <tantek_> tantek_ has joined #crypto
00:21:19 <manu1> manu1 has joined #crypto
00:33:43 <manu2> manu2 has joined #crypto
00:55:19 <mountie> mountie has joined #crypto
01:01:01 <vgb> vgb has joined #crypto
01:02:53 <hhalpin> hhalpin has joined #crypto
01:03:19 <rbarnes> rbarnes has joined #crypto
01:03:22 <MichaelH> MichaelH has joined #crypto
01:03:24 <rbarnes> working on joining the audio...
01:04:03 <kotakagi> kotakagi has joined #crypto
01:05:11 <vgb> yeah, i got "this conference is restricted at this time"
01:05:27 <rigo> oh
01:05:44 <rigo> zakim, who is here?
01:05:46 <jehoochen_> jehoochen_ has joined #crypto
01:05:55 <rigo> no zakim
01:06:05 <rigo> trackbot, start meeting
01:06:07 <trackbot> RRSAgent, make logs public
01:06:07 <Zakim> Zakim has joined #crypto
01:06:09 <trackbot> Zakim, this will be CRYPT
01:06:09 <Zakim> ok, trackbot; I see SEC_WebCryp()8:00PM scheduled to start 6 minutes ago
01:06:10 <trackbot> Meeting: Web Cryptography Working Group Teleconference
01:06:10 <trackbot> Date: 15 November 2013
01:06:26 <rbarnes_> rbarnes_ has joined #crypto
01:06:42 <rbarnes_> is the conference code 27978# (like usual) or 26633# (like yesterday)?  the former works for me (i'm there now), but the latter is "restricted"
01:07:03 <rigo> I'm about to find out
01:07:05 <vgb> zakim, what's the code?
01:07:05 <Zakim> the conference code is 27978 (tel:+1.617.761.6200 sip:zakim@voip.w3.org), vgb
01:07:13 <virginie> virginie has joined #crypto
01:08:12 <rigo> zakim, call Wuzhou_east
01:08:12 <Zakim> ok, rigo; the call is being made
01:08:22 <rbarnes_> zakim, who's on the call?
01:08:22 <Zakim> SEC_WebCryp()8:00PM has not yet started, rbarnes_
01:08:23 <Zakim> On IRC I see virginie, rbarnes_, Zakim, jehoochen_, kotakagi, MichaelH, rbarnes, hhalpin, vgb, mountie, manu2, tantek, nkic, ekr, danny_, rigo, eroman, rsleevi, RRSAgent, timeless,
01:08:23 <Zakim> ... trackbot, slightlyoff, wseltzer
01:08:28 <mete> mete has joined #crypto
01:08:51 <tony> tony has joined #crypto
01:09:29 <jin> jin has joined #crypto
01:09:39 <ChristianFuhrhop> ChristianFuhrhop has joined #crypto
01:09:43 <sangrae> sangrae has joined #crypto
01:09:50 <leckie> leckie has joined #crypto
01:10:23 <mz-modeltaxi> mz-modeltaxi has joined #crypto
01:10:40 <rigo> Agenda:
01:10:51 <rigo> Agenda: http://www.w3.org/2012/webcrypto/wiki/F2F_Shenzhen_Nov2013#Detailed_Agenda
01:11:01 <rigo> Chair: Virginie Galindo
01:11:06 <junil> junil has joined #crypto
01:11:32 <kodonog> kodonog has joined #crypto
01:11:45 <kodonog> scribenick: kodonog
01:12:23 <vgb> zakim, who is making noise?
01:12:24 <Zakim> sorry, vgb, I don't know what conference this is
01:12:32 <rigo> scribe: kodonog
01:12:46 <rigo> zakim, this is crypt
01:12:46 <Zakim> ok, rigo; that matches SEC_WebCryp()8:00PM
01:12:48 <rbarnes> i might *like* to leave before 02:30 ;)
01:13:07 <rigo> tough luck :)
01:13:27 <dsuwirya> dsuwirya has joined #crypto
01:13:41 <vgb> zakim, who is making noise?
01:13:54 <kodonog> some participants need to leave by 3:30 local time...
01:13:56 <Zakim> vgb, listening for 13 seconds I could not identify any sounds
01:14:01 <rigo> Topic: Buglist
01:14:12 <minami> minami has joined #crypto
01:14:13 <markw> markw has joined #crypto
01:14:16 <rigo> https://www.w3.org/Bugs/Public/buglist.cgi?quicksearch=web%20cryptography
01:14:18 <Anders> Anders has joined #crypto
01:14:19 <rsleevi> https://www.w3.org/Bugs/Public/buglist.cgi?component=Web%20Cryptography%20API%20Document&list_id=29868&order=bug_id&product=Web%20Cryptography&query_based_on=&query_format=advanced&resolution=---
01:14:23 <israelh> israelh has joined #crypto
01:14:49 <virginie> virginie has joined #crypto
01:14:57 <kodonog> order for today, bug review, webRTC,
01:15:15 <hhalpin> hhalpin has joined #crypto
01:15:26 <mountie> bug# ?
01:15:36 <hhalpin> trackbot, start meeting
01:15:38 <trackbot> RRSAgent, make logs public
01:15:40 <trackbot> Zakim, this will be CRYPT
01:15:40 <Zakim> ok, trackbot; I see SEC_WebCryp()8:00PM scheduled to start 15 minutes ago
01:15:41 <israelh> bug#23660
01:15:41 <rigo> sure
01:15:41 <trackbot> Meeting: Web Cryptography Working Group Teleconference
01:15:41 <trackbot> Date: 15 November 2013
01:15:45 <virginie> bug 23660
01:15:49 <rsleevi> https://www.w3.org/Bugs/Public/show_bug.cgi?id=23660
01:15:59 <hhalpin> topic: Finishing Up Going through Bugzilla on API
01:16:02 <rsleevi> https://www.w3.org/Bugs/Public/show_bug.cgi?id=23662
01:16:23 <rsleevi> https://www.w3.org/Bugs/Public/show_bug.cgi?id=23695
01:16:25 <kodonog> finish specification
01:17:02 <MichaelH> q+
01:17:28 <csjung> csjung has joined #crypto
01:17:29 <kodonog> 23695 - public keys are always extractable, extracability of private key pairs is TBD, probably look like MS implementation
01:18:07 <kodonog> MichaelH:  put private extractable as an enum in your list?
01:18:08 <csjung> csjung has joined #crypto
01:18:28 <kodonog> rsleevi: there is no word for extractable
01:18:44 <kodonog> confusing this with the conversation about usages
01:18:58 <mete> q+
01:19:10 <virginie> to all attendees, reminder : our wiki agenda is here : http://www.w3.org/2012/webcrypto/wiki/F2F_Shenzhen_Nov2013#Detailed_Agenda
01:19:40 <virginie> ack MichaelH
01:19:59 <kodonog> Mete: why do we not have a generate key pair method and just a singluar generate key
01:20:08 <kodonog> rsleevi: a couple of answers
01:20:38 <kodonog> ... if you split along the notion of key pair, you would need parallel operations,
01:21:01 <kodonog> .... this creates a significant surface for all those
01:21:40 <Gang> Gang has joined #crypto
01:21:43 <virginie> q?
01:21:47 <rsleevi> https://www.w3.org/Bugs/Public/show_bug.cgi?id=23728
01:21:47 <virginie> ack mete
01:21:55 <AndyF> AndyF has joined #crypto
01:21:55 <kodonog> ... doing this would cause significant rework of api
01:22:01 <leckie> leckie has joined #crypto
01:22:37 <kodonog> bug 23728: spec needs to be clear, operations are asynchronous, what happens to the underlying data
01:22:44 <kodonog> .... interpretations
01:23:03 <kodonog> ... one is you freeze the object
01:23:28 <kodonog> ... caller cannot reuse that object but would need to reallocate new memory
01:23:41 <kodonog> ... another interpretation you can use copy on write
01:23:53 <kodonog> ... apple engrs concerned about performance implications
01:24:02 <kodonog> ... you'd be adding a copy on every write
01:24:16 <taocai> taocai has joined #crypto
01:24:26 <kodonog> ... would only be meaningful for webcrypto but would have broader implications
01:25:05 <kodonog> ... third options implementation copies on callers data, any further mutations of underlying data are not reflected in the cryptographic operations
01:25:05 <virginie> q?
01:25:11 <virginie> q+
01:25:31 <kodonog> ... spec will do third
01:25:56 <kodonog> israel: can we infer some of these strategies based on array buffer or arraybuffer view
01:26:46 <kodonog> rsleevi: (missed his answer)
01:27:36 <virginie> ack virginie
01:27:42 <rsleevi> answer: in terms of WebIDL, there's no requirement that we make a copy of the ArrayBuffer. The spec needs to clarify explicitly to make a copy
01:27:44 <rsleevi> https://www.w3.org/Bugs/Public/show_bug.cgi?id=23729
01:28:26 <kodonog> 23729: implications inconsistent error handling
01:29:01 <virginie> [note to the attendees interested in web RTC, richard posted some slides here http://www.w3.org/2012/webcrypto/wiki/images/b/bc/Webrtc.pdf]
01:29:32 <kodonog> ... likely will go with a DOM string, error handling will be consistent
01:29:35 <virginie> q?
01:29:52 <kodonog> ... mostly a webIDL clarification
01:30:41 <kodonog> .... instead of a sequence of keys would be a sequence of DOMstrings
01:30:51 <kodonog> ... reason this is important
01:31:02 <ekr> ekr has joined #crypto
01:31:10 <kodonog> ... 2 interpreattions... you ignore them or you error out
01:31:39 <kodonog> ... because this is a security api, blindly accepting things is not good practice
01:32:04 <rsleevi> https://www.w3.org/Bugs/Public/show_bug.cgi?id=23762
01:32:32 <kodonog> related to key usages, how a default key usage behaves
01:32:47 <kodonog> proposed resolution, key usage is a mandatory attribute,
01:33:09 <kodonog> ... in the case of JWK, the caller would need to know the import key and
01:33:20 <kodonog> ... same behavior for handling different algorithms
01:34:08 <kodonog> ... if caller is specifying a set of key usages the aren't supported, it would fail
01:34:14 <rsleevi> https://www.w3.org/Bugs/Public/show_bug.cgi?id=23779
01:34:41 <kodonog> 23779: dup and cleanup bug on webIDL semantic nits
01:34:43 <rsleevi> https://www.w3.org/Bugs/Public/show_bug.cgi?id=23786
01:35:13 <kodonog> 23786: request for clarification on import key, similar to previous discussion
01:35:50 <kodonog> ... if parameters are an incompatible intersection, it fails
01:36:03 <kodonog> each algorithm would define the set of parameters
01:36:19 <kodonog> some algorithms don't have this problem
01:36:20 <virginie> q?
01:36:30 <rsleevi> https://www.w3.org/Bugs/Public/show_bug.cgi?id=23796
01:37:10 <kodonog> 23796: in case of JWA, how to JWA and webcrypto algorithms meet,
01:37:31 <kodonog> ... mark working with JOSE wg on JWA algorithm registry,
01:37:47 <kodonog> ... jose has a use were enc means encrypt/decrypt/wrap, and unwrap
01:37:58 <rsleevi> https://www.w3.org/Bugs/Public/show_bug.cgi?id=23831
01:38:00 <kodonog> ... need to figure out how to parse these in an attribute preserving way
01:38:06 <kodonog> .... discusssion on the list...
01:38:15 <kodonog> 23831"
01:38:23 <virginie> q?
01:38:25 <MichaelH> q+
01:38:29 <kodonog> filled yesterday by mete to add HMAC-SHA1
01:38:31 <kodonog> will be done...
01:39:04 <kodonog> MichaelH: HMA-SHA1 as a recommended?
01:39:21 <hhalpin> it would likely be better to use a less loaded term than "recommended"
01:39:27 <hhalpin> such as just "supported"
01:39:34 <kodonog> rsleevi: we can debate whether it is recommended for legacy or
01:39:40 <kodonog> accordinga
01:40:19 <kodonog> Israel: in the webIDL, are we creating an array of arraybuffers
01:40:51 <tantek> tantek has joined #crypto
01:41:01 <kodonog> rsleevi: sequence is treated as a contiguous buffer
01:42:35 <kodonog> ... goal is to prevent a JS author from having to copy
01:44:02 <kodonog> Israel: complicates implementation and increases the test matrix
01:44:29 <kodonog> ... make copies in some cases and not others means you have to decide when to copy
01:44:30 <tantek> tantek has joined #crypto
01:45:07 <kodonog> ... do we need this level of detail?
01:45:16 <kodonog> rsleevi: we could take this out
01:45:27 <kodonog> ... it was added in the april version
01:45:54 <kodonog> ... downside to taking it out, once we force a particular pattern on a JS author we can never optimize that pattern
01:46:18 <rigo> q+ to ask about algorithms
01:46:29 <kodonog> Israel will file a bug about sequence and we will go back to a single operation model
01:47:01 <hhalpin> q?
01:47:06 <hhalpin> ack rigo
01:47:06 <Zakim> rigo, you wanted to ask about algorithms
01:47:50 <hhalpin> +1 adding 25519
01:48:10 <kodonog> Rigo: question on algorithms potentially impacted by Snowden revelations
01:48:42 <kodonog> rsleeve: the few people that have raised concerns are not reinforced by the cryptographic community
01:48:55 <kodonog> ... including the cfrg in the community
01:49:18 <rigo> my concerns have been addressed
01:49:26 <kodonog> hhaplin: what is the browser support
01:49:41 <hhalpin> just wondering if there was any plan to add brainpool to default implementations
01:50:08 <hhalpin> and any plans to add or not?
01:50:12 <kodonog> vijay: microsoft out of the box for the 3 suiteB curves
01:51:08 <hhalpin> 25519 is not covered yet (ditto Brainpool), still in TLS WG
01:52:02 <hhalpin> there will be a test-suite
01:52:12 <hhalpin> that should specify clearly what developers can rely on.
01:53:18 <JonathanJ> JonathanJ has joined #crypto
01:53:42 <hhalpin> +1 rsleevi's epic trip through issue list and bugzilla
01:54:00 <hhalpin> Richard's slides: http://www.w3.org/2012/webcrypto/wiki/images/b/bc/Webrtc.pdf
01:54:08 <hhalpin> topic: WebRTC and WebCrypto
01:54:58 <rbarnes> http://www.w3.org/2012/webcrypto/wiki/images/b/bc/Webrtc.pdf
01:55:11 <kodonog> Richard Barnes
01:55:26 <kodonog> webRTC meeting earlier this week
01:56:17 <kodonog> ... rbarnes presenting referenced slide set
01:56:36 <kodonog> ... need some way for applications to control which keys are used in the handshake
01:58:21 <stephane> stephane has joined #crypto
01:58:25 <wonsuk> wonsuk has joined #crypto
02:00:46 <hhalpin> notes the point re "never been accessed to JS" re private key material
02:00:54 <rsleevi> q+
02:01:09 <csjung_> csjung_ has joined #crypto
02:01:42 <kodonog> ... proposal add two things, specific key usage and flag
02:01:46 <mountie> q+
02:02:04 <rsleevi> vgb: It would be legal, but it would be an error
02:02:06 <csjung__> csjung__ has joined #crypto
02:02:16 <rsleevi> that is, the usage would result in an error, because unsupported usages = throw an error
02:02:29 <vgb> rsleevi: but an implementation could support it and not violate the spec, right?
02:02:31 <rsleevi> the only change is that it goes from a sync error (webIDL) to an async error (reject the promise)
02:02:32 <manu2> manu2 has joined #crypto
02:02:34 <rsleevi> vgb: Correct
02:02:57 <vgb> so... can we take that off the table as a spec issue?
02:03:07 <kodonog> ... webcrypto would be a reasonable way to implement this because most of the requirements are already met
02:03:34 <rsleevi> @vgb: You still need/want a spec to describe how this new key usage works ;)
02:03:52 <rsleevi> @vgb: Otherwise,  you end up in a situation where one UA uses a keyUsage of "dtls", another uses a keyusage of "webrtc"
02:04:01 <rsleevi> @vgb: The latter one being the 'right' one ;)
02:04:08 <vgb> rsleevi: true, but that spec does not need to be this one?
02:04:31 <ekr> q+
02:04:37 <kodonog> rsleevi: as an implementor I have zero interest in this.
02:04:38 <hhalpin> q+
02:04:41 <AndyF> q+ seems like we are moving encryption to far up the stack
02:04:44 <kodonog> ... disagree that it is easy to implement
02:05:14 <kodonog> ... if i wanted to use ECDH how is that communicated in the dtls certificate
02:05:24 <kotakagi> kotakagi has joined #crypto
02:06:17 <AndyF> q+ to say it seems like we are moving encryption to far up on the stack to have it at the application programming level
02:06:22 <kodonog> ... define a set of webcrypto objects that can't be used with webcrypto
02:06:28 <JonathanJ> JonathanJ has joined #crypto
02:06:40 <kodonog> ... i don't see a way that this api makes sense to expose
02:07:03 <kodonog> .... a whole host of algorithms that just don't work
02:07:11 <kodonog> ... better suited for the webRTC group to explore
02:07:43 <virginie> q+
02:07:47 <kodonog> ... webRTC could explore their needs for crypto, if they wanted to expose those to JS developers
02:08:11 <rigo> q+
02:08:13 <kodonog> (rsleevi... you might want to better summarize for the minutes)
02:08:30 <kodonog> Mountie: I agree with Ryan.
02:09:52 <kodonog> mountie: if webcrypto handles certificates then this might be workable
02:11:01 <rbarnes> ekr: appropriate kind of keys here are ECDSA and RSA
02:11:20 <rbarnes> ekr: true that you couldn't impose an AES key, but surely that's true all over webcrypto, not webrtc's problem if the class hierarchy isn't rich enough
02:11:28 <rbarnes> ekr: pfs is not a problem
02:11:41 <rbarnes> ... if webrtc wants this, they should ask for it -- that's what this is
02:11:57 <rbarnes> ... could make up some other class of key objects that you use only with webrtc, but that seems like of inferior
02:12:01 <rsleevi> q+ to respond to ekr
02:12:25 <rbarnes> ... if we want webrtc to say "please use rsa/ecdsa", we would need to restate everything that web crypto has already done
02:12:39 <hhalpin> ekr, could you put this in IRC?
02:12:50 <rbarnes> i've been trying to scribe ekr
02:12:58 <ekr> What rbarnes is saying is fairly accurate
02:13:03 <ekr> (in terms of my scribing)
02:13:36 <ekr> Well, we discussed this last week
02:13:44 <ekr> or rather M-T
02:13:44 <tao> tao has joined #crypto
02:13:49 <ekr> and then decided to bring it to webcrypto
02:14:06 <kodonog> hhalpin: we should continue the discussion over the mailing list
02:14:33 <ekr> MichaelH: the property here is that "this key was internally generated and never marked exportable"
02:15:05 <kodonog> ... 2 new things, DTLS key usage and guarantee not used by webcrypto
02:15:05 <ekr> rsleevi: the guarantee is that it was *generated* by webcrypto but never available for private computations by the JS
02:15:49 <Zakim> AndyF, you wanted to say it seems like we are moving encryption to far up on the stack to have it at the application programming level
02:16:05 <kodonog> AndyF: from webRTC working group
02:16:27 <virginie> note : andy is from Verisign, as an observer here
02:16:37 <kodonog> ... looking at putting dtls certificate into api
02:16:49 <ekr> andy: WebRTC has already decided to do DTLS. That's not an open question.
02:17:26 <kodonog> ... why is this being done at this level? how do I guarantee the integrity of that keystore
02:17:34 <rbarnes> andy: also, the dtls is all done by the browser, this is only giving the app a degree of control over how it's odne
02:17:37 <hhalpin> it seems like this distinction between extractibility in terms of generation vs. unwrapped/imported is interesting and orthogonal to the DTLS key usage. I'd be interested in knowing if any other use-cases need finer grain storage/generation concerns beyond how we currently specify extractability.
02:18:05 <ekr> hhalpin, I think that's arguably true, though it's a sort of limited guarantee because you have to trust the browser.
02:18:17 <ekr> … that's true for WebRTC, but it's not that common a setting.
02:18:18 <kodonog> rigo: meta discussion... w3c part of research project looking at webrtc security
02:18:30 <mete> hhalpin: any financial related implementation requires finer grained controls/knowledge related to key storage/generation
02:18:53 <mete> hhalpin: ... requires or can benefit from it
02:19:01 <kodonog> ... together with IAB will organize a workshop prior to next IETF,
02:19:08 <kodonog> ... this would be a good topic for that workshop
02:19:20 <kodonog> ... project is to create a research roadmap
02:19:29 <Zakim> rsleevi, you wanted to respond to ekr
02:19:41 <hhalpin> ekr, I think we just have to say the browser is a trust anchor with this API - would still be interested in a more detailed proposal re extractability
02:19:44 <kodonog> rsleevi: webrtc cares about identity, certificates
02:19:46 <wseltzer> we need to carefully scope the claims we make about key security
02:19:57 <rigo> +1
02:19:57 <kodonog> ... these are problems we have intentionally deferred from v1 of the api
02:20:12 <ekr> clearly, we don't care if it's "DTLS" or "WebRTC"
02:20:24 <rbarnes> "peerconnection" was also suggested
02:20:42 <rbarnes> q+
02:20:46 <ekr> quite the contrary, we don't want to share them across origins
02:20:47 <ekr> q+
02:21:15 <ekr> actually, you probably could use RSA-PSS.
02:21:21 <ekr> In some future TLS world
02:21:30 <ekr> (Though I don't think that that's a material change)
02:21:35 <kodonog> ... this is the certifications plus conversation and is a fundamental design issue
02:21:41 <ekr> q-
02:21:43 <kodonog> ... webrtc should deal with it at a high level
02:22:13 <rbarnes> webrtc has decided to separate identity from the crypto
02:22:25 <rbarnes> dtls provides the key exchange and proof of possession
02:22:35 <rbarnes> identity providers bind public keys to identity
02:22:54 <rbarnes> so the work we're talking about, at the dtls layer, is not bound into the identity part, it's more crypto-focused
02:23:07 <rbarnes> <over/>
02:23:20 <leckie> leckie has joined #Crypto
02:23:33 <mete> s/hhalpin: any/hhalpin, any/
02:23:37 <rbarnes> we don't really care about the certs in the DTLS exchange, just the keys
02:23:50 <mete> s/hhalpin: ... requires/hhalpin, ... requires/
02:23:51 <rbarnes> SDP exchanges key fingerprints, which get bound to identities at a different layer
02:23:53 <ekr> as rbarnes is saying: the certificate is just a key carrier because of the way DTLS works.
02:24:24 <ekr> session description protocol
02:24:25 <rbarnes> Session Description Protocol
02:24:30 <rbarnes> jinx!
02:24:55 <rbarnes> so really all we're talking about here is *key* management, not *identity* management
02:25:01 <kodonog> virginie: this topic is for future work
02:25:14 <kodonog> ... no direct endorsement, need more description
02:25:40 <kodonog> ... this is not a small adjustment, it is a new requirement
02:26:00 <rbarnes> i disagree with the characterization of this as a huge change.  it fits on a slide, as would the implementation.
02:26:23 <rsleevi> @rbarnes: No it wouldn't :)
02:26:25 <rbarnes> but i will take this to the list.  clearly there's a need to expand more on the context
02:26:38 <rbarnes> rsleevi: challenge accepted :)
02:26:39 <kodonog> ... i don't agree with ryan on the complexity
02:27:11 <ekr> rsleevi, {\tiny \begin{verbatim} …. \end{verbatim}}
02:27:13 <rsleevi> @rbarnes: Having been involved in both implementations in Chrome, they're entirely different stacks and security models. Getting keys from one to the other is a non-trivial change with fundamental security implications
02:27:41 <kodonog> ... happy with other groups coming to us
02:27:44 <ekr> rsleevi: I'm not sure it's as hard as you think it is, but I'd be happy to talk to you about chrome
02:27:46 <ekr> :)
02:28:03 <rsleevi> break for 30
02:40:11 <tony_> tony_ has joined #crypto
02:50:10 <rbarnes_> rbarnes_ has joined #crypto
02:51:43 <rbarnes__> rbarnes__ has joined #crypto
02:53:39 <taocai> taocai has joined #crypto
02:55:38 <tantek> tantek has joined #crypto
03:02:30 <vgb> vgb has joined #crypto
03:04:52 <rbarnes> we back yet?
03:05:05 <rbarnes> is 30 minutes different in china?
03:05:28 <markw> markw has joined #crypto
03:05:44 <mete> mete has joined #crypto
03:06:10 <mountie> mountie has joined #crypto
03:08:29 <virginie> virginie has joined #crypto
03:08:59 <rsleevi> Zakim, dial Wuzhou_East
03:08:59 <Zakim> ok, rsleevi; the call is being made
03:09:07 <virginie> we will start in few seconds... get ready !
03:09:09 <sangrae> sangrae has joined #crypto
03:09:23 <rsleevi> rbarnes: 30 minutes is a SHOULD implement, not a MUST implement
03:09:35 <jin> jin has joined #crypto
03:10:10 <leckie> leckie has joined #crypto
03:10:35 <kodonog> upcoming wrap/unwrap import, key discovery
03:11:02 <minami> minami has joined #crypto
03:11:18 <wseltzer> rrsagent, pointer?
03:11:18 <RRSAgent> See http://www.w3.org/2013/11/15-crypto-irc#T03-11-18
03:11:38 <rsleevi> scribenick: eroman
03:11:48 <nkic> nkic has joined #crypto
03:11:49 <eroman> TOPIC: Wrap/Unwrap
03:12:40 <wseltzer> rrsagent, generate minutes
03:12:40 <RRSAgent> I have made the request to generate http://www.w3.org/2013/11/15-crypto-minutes.html wseltzer
03:12:57 <wseltzer> rrsagent, make logs public
03:13:27 <eroman> virginie equesting rsleevi to give a status update on wrap/unwrap
03:13:30 <vgb> q+
03:13:34 <eroman> s/equesting/requesting
03:13:44 <virginie> q?
03:13:57 <rbarnes> q-
03:14:17 <markw> q+
03:14:42 <eroman> rsleevi: No outstanding technical issues. There is text to integrate into the spec from Netflix discussions but otherwise nothing major
03:16:13 <eroman> Mark Watson: We are happy with the approach that we proposed and there are just some details to work out. There are details to work out on the "usage" attribute for the JWK
03:16:25 <eroman> rsleevi: Matter of coordinate with JOSE on how it works
03:16:30 <virginie> ack vgb
03:16:37 <virginie> ack markw
03:17:09 <manu2> manu2 has joined #crypto
03:17:18 <tantek> tantek has joined #crypto
03:17:20 <tony> tony has joined #crypto
03:17:43 <eroman> Mark Watson: We need to decide what we want to register. They [JOSE] provide the registry. Way to differentiate what applies to JWK
03:18:21 <eroman> ... If anyone thinks that we don't need to accurately represent a WebCrypto Key in JWK then can bring it up now
03:18:21 <virginie> q?
03:18:54 <eroman> virginie: We can definitely close this topic and switch to topic of Key Discovery API
03:19:01 <eroman> TOPIC: Key Discovery API
03:19:30 <hhalpin> hhalpin has joined #crypto
03:19:57 <csjung> csjung has joined #crypto
03:19:58 <eroman> Mark Watson: The API has not changed, just 1 issue with the text (add API for discovering the names)
03:20:18 <eroman> Virginie: There are no outstanding issues, just this one new request that we are about to discuss
03:22:46 <eroman> MichaelH: The intent here is there is a mechanism by which we can have a "data concentrator" which has access to the internet which has subordinate devices which don't have access to the internet. Example: Home automation system. Device controller is a UA talking to the internet via a ???. Each device has a key-pair. When the service provider needs to update
03:22:46 <eroman> it will quiz the concentrator to say what keys have certificates that I can use. Those certificates are identified by a "GetKey" function which will return only keys that match the certificate origin.
03:23:05 <eroman> s/???/PLC
03:23:46 <markw> q+
03:23:48 <eroman> rsleevi: I feel like this is changing the API to meet a particular usecase
03:24:29 <eroman> rsleevi: What about a "GetKeyByID" mechanism instead
03:24:39 <eroman> MarkW: Doesn't know what the IDs are
03:24:46 <vgb> q+
03:25:01 <eroman> rsleevi: the whole idea of named keys is the server can ask the UA
03:25:35 <Takahiro> Takahiro has joined #crypto
03:25:35 <eroman> .. in this particular home automation device... can assign unique device IDs to light switch 1 etc..
03:25:46 <hhalpin> So he wants a GetKey by origin essentially?
03:25:48 <eroman> ... getKeyByDevice(0)
03:26:09 <rsleevi> clarification to eroman:
03:26:13 <rsleevi> getKeyById("device0")
03:26:33 <rsleevi> getKeyByName("device0"), getKeyByName("device1")
03:26:52 <mete> q+
03:27:22 <rsleevi> @vgb: You have to get the Key object first; pre-provisioning IDB isn't (yet) supported, which is why we have named key discovery to begin with
03:27:47 <eroman> MarkW: Just to fix some of the context things... It is getkeybyname not getkeyby id. The idea is these have an ID and a name. The name is pre-provisioned thing that identifies this key among a small number of keys that were bound to the device is our use case. So you have this notion of factory pre-provisioning a device with particular keys for the origin.
03:27:47 <eroman> i.e. key1, key2, or whatever we decide to call them. and then they have IDs that identify the keys among all the devices. and then there was this idea of what if i don't know the names. we didn't have a use case where we didn't know the names. this is a use case that was brought up.
03:28:00 <vgb> q-
03:28:34 <vgb> rsleevi: could an implementation do that on its own and still be compliant with the spec?
03:28:34 <eroman> .. Ryan is right you could have these names dynamically allocated from a known set (device0, device1 and so on). we might decide this is awkward because next time you reboot the device they may have all changed around. this is awkard.
03:29:07 <eroman> ... maybe the key is associated to something completely different like a person. we have agreed this is out of scope for version 1.
03:29:51 <eroman> ... the API proposed is pretty simple. so if we decide to support this use case shouldn't be too complicated. however we would have to think about the privacy considerations.
03:30:11 <eroman> .. question for the working group is if it is something we want to address.
03:30:13 <vgb> @rsleevi: primarily i'm seeing a general trend of wanting richer searching and organization of keys, and i wonder if we can leverage other existing pieces that do such things well
03:30:32 <rsleevi> @vgb: I agree. I'd like to avoid creating "yet another" storage mechanism, and yet another query mechanism
03:30:43 <eroman> mete: I wonder if there are multiple key stores in the device. And I can't say in the API from which I do the query.
03:31:03 <eroman> ... "get this from the embedded TPM" "get this from the key card"
03:31:28 <eroman> MarkW: We are not addressing smart cards, that is out of scope
03:31:47 <virginie> q?
03:31:51 <rigo> "get this from URI"?
03:32:07 <rsleevi> @vgb: The sorting/filtering/discovering of keys is the 'messy' API that we keep punting, which is why named, pre-provisioned key discovery was working specifically because you could *avoid* the need for any searching, because by definition, you know the name of the key a-priori
03:32:57 <eroman> mountie: Who benefits from this specification?
03:33:12 <eroman> Michael: "Whoever provides devices into the world"
03:33:20 <eroman> s/Michael/MichealH
03:33:37 <tony> tony has joined #crypto
03:33:43 <eroman> rsleevi: Any device manufacturer that is implementing user agent, and wants to expose keys to the user agent.
03:34:14 <eroman> mountie: Brings up issue of name collision, if there are many manufacturers vending names
03:34:25 <eroman> MichaelH: This is just a way to find them
03:35:40 <hhalpin> It seems like we need to be careful re ad-hoc solutions to key management, agree with @vgb there should be someway to do this with other cross-platform standards.
03:35:45 <eroman> MarkW: .. Another solution that a device manufacturer can adopt. They can implement a generic mechanism that can create a pre-provisioned key for an origin on request, using a root key by hashing it together with the origin for example.
03:35:57 <tony> tony has left #crypto
03:36:09 <rigo> xkms is the current W3C spec on key management
03:36:12 <tony> tony has joined #crypto
03:36:42 <virginie> q?
03:37:08 <eroman> MichelH: you still need to have a negotiation for interchange to happen (i.e. postMessage). These names are specific to an origin. So not really an issue
03:37:08 <kotakagi> kotakagi has joined #crypto
03:37:51 <virginie> q?
03:37:53 <leckie> leckie has joined #crypto
03:38:27 <eroman> virginie: In order to progress on this topic there are three choices: (1) integrate into spec (2) park it for future work (3) object to it
03:38:29 <minami> minami has joined #crypto
03:38:49 <eroman> virginie: We are going to make a formal vote
03:38:56 <vgb> virginie: what is "it"?
03:39:32 <hhalpin> I saw a use-case for key-discovery by GetKeysbyOrigin?
03:39:48 <rsleevi> @hhalpin: GetKey*s*ByName I believe
03:39:48 <eroman> virgin: The "it" being referred above is the GetKeysByName() by Mike
03:39:56 <eroman> s/virgin/virginie
03:40:18 <rsleevi> ACTION-114?
03:40:18 <trackbot> ACTION-114 -- Michael Hutchinson to Make proposal to amend api -- due 2013-09-23 -- OPEN
03:40:18 <trackbot> http://www.w3.org/2012/webcrypto/track/actions/114
03:40:44 <rsleevi> http://lists.w3.org/Archives/Public/public-webcrypto/2013Sep/0048.html
03:40:56 <hhalpin> I'd be interested what implementers have to say about the chances of this being implemented in addition to KeyDiscovery?
03:41:08 <hhalpin> I.e. its unclear if a real product is driving this or a hypothetical use-case
03:41:19 <rsleevi> The proposed addition, based on https://dvcs.w3.org/hg/webcrypto-keydiscovery/raw-file/tip/Overview.html#overview
03:41:26 <rsleevi> is added methods "getKeys" and "getKeyById"
03:41:30 <eroman> MarkW: This is about whether we want to add it in concept, and then figure out the details
03:41:56 <hhalpin> all non-extractable keys :)
03:42:17 <eroman> mete: <inaudible>
03:43:56 <hhalpin> Nothing would prevent URIs from being used - the question is should they be required.
03:44:26 <hhalpin> and keys are already origin specific so one could craft a URI scheme or origin+string :)
03:44:47 <eroman> rsleevi: [restating and responding to Rigo's question] The issue you are pointing out is disambiguating name collisions. As it relates and speaking on behalf of Mark: Names are essentially decided by the user agent (origin specific keys), so the handling of collisions between names is done by user agent. So yes there is a potential of naming issues if you
03:44:47 <eroman> have multiple user agents exposing pre-provisioned keys (which you can file as question for Mark). Names are not chosen by the site, they are chosen by the user agent.
03:44:51 <rbarnes> harry is inaudible
03:45:08 <rigo> harry, looks like low hanging fruit, but if it is not needed....
03:45:35 <leckie> leckie has joined #Crypto
03:45:35 <hhalpin> Mark is definitely implementing, not sure re everyone else.
03:46:34 <hhalpin> So TV folks would implementing Key Discovery, and thus perhaps this GetKeyName discovery work.
03:46:36 <mountie> q+
03:46:45 <eroman> MarkW: So right now I don't have an example that I can bring to the group. This is something that we at Netflix wanted to use to run our HTML application on TVs and set-top boxes. So this is not for desktop browsers (which are the people here). Those devices are less powerful that desktop machines, so the evolution of HTML5 on those devices is not as far
03:46:45 <eroman> advanced as on desktop devices. So not much more I can say about that.
03:46:47 <rsleevi> q+
03:46:49 <virginie> resolutionq?
03:46:54 <virginie> q?
03:47:13 <eroman> mountie: When the key is generated or in the user agent (not factory installed), can this GetKeyByName be used ??? by the user agent itself
03:49:26 <eroman> rsleevi: A variety of implementations are possible. The spec doesn't require any particular one. So long as when you call GetKeyByName ad that origin is authorized then a key is returned. For instance it could choose to derive a new key using the master key in response to GetKeyByName().
03:49:39 <eroman> s/ad/and
03:51:10 <eroman> MichaelH: Clarification: This is restricted to keys that have certificates (not all keys in the store)
03:52:20 <eroman> mountie: To remove any misunderstanding, I think we need more information on the user
03:52:39 <rsleevi> PROPOSA: Do we address in v1 of the Web Crypto Key Discovery API this use case (ex: getKeys / getKeyById)
03:52:43 <rsleevi> PROPOSAL: Do we address in v1 of the Web Crypto Key Discovery API this use case (ex: getKeys / getKeyById)
03:52:45 <eroman> virginie: Question: Do we want to address in version 1 of the WebCrypto Disovery API
03:52:53 <MichaelH> +1
03:52:55 <rsleevi> -1
03:52:59 <hhalpin> 0
03:53:02 <markw> 0
03:53:06 <rbarnes> 0
03:53:10 <ekr> 0
03:53:19 <eroman> ... this use case
03:53:23 <hhalpin> Stunning agreement
03:53:38 <vgb> i vacillate between 0 and -1
03:53:40 <Anders> +1
03:53:51 <mete> 0
03:53:56 <sangrae> 0
03:54:24 <jin> 0
03:54:30 <markw> q+
03:54:36 <vgb> q+
03:55:05 <ekr> zakim, who is speaking
03:55:05 <Zakim> I don't understand 'who is speaking', ekr
03:55:14 <virginie> hhalpin is speaking
03:55:17 <mountie> 0 until spec updated and understandable
03:55:31 <eroman> Harry Halpin: Is the editor of the key discovery... does he want to sync his last call to the discovery last call. I seem to recall that Mark didn't care.
03:55:52 <hhalpin> s/didn't care/didn't care on this feature
03:56:02 <eroman> MarkW: I was expecting that the progress of this draft would match that of Web Crypto API, and go to last call at same time
03:56:45 <hhalpin> I'd be happy to leave it as added as "Feature at Risk" at editor's discretion
03:57:07 <eroman> Vijay: We really need to talk about it more perhaps on this list, before it is ready for consideration for inclusion
03:57:28 <eroman> .. it just seems to indicate that the discussion around it is not mature enough to commit to putting it into V1
03:57:42 <eroman> virginie: It is quite clear to me as chair that we are not going to work on this in the V1 of the spec
03:57:50 <eroman> ... that there is low endorsement in the group
03:58:06 <eroman> ... I also hear that there is need of some clarification
03:58:13 <eroman> ... it is not a dead topic, and could be part of V2
03:58:22 <hhalpin> mwatson, Key Discovery will require proofs of two separate implementations per feature
03:58:40 <hhalpin> for exiting CR
03:58:57 <hhalpin> I'm sure you'll have lots of implementers, but just make sure the WG has at least two that can be public
03:59:26 <eroman> viriginie: Topic is closed (Web Crypto Key Discovery addition)
03:59:40 <hhalpin> topic: milestones
03:59:44 <eroman> TOPIC: Milestones: When do we want to go to Last Call
04:00:22 <hhalpin> Notes we're already about a month behind re Last Call
04:00:24 <eroman> virginie: Ryan, when do you think we will be ready for last call? What is a reasonable timing (for Ryan to finish edits and for group to review)
04:02:00 <eroman> rlseevi: My first feeling is hard to gauge. In light both of the number of bugs open, and other professional responsibility. 43 bugs and 6 or so issues to close out. So I'm going to unfortunately have to defer on that a bit. I don't know if i can give a reasonable commitment. The next version of spec will be significantly longer (to address the open issues)
04:02:00 <eroman> and a require a substantial review effort.
04:02:12 <eroman> virginie: When do you think the next version will be available?
04:02:41 <eroman> rsleevi: Again, I can't commit to a date on that... There is only 1 editor at this point
04:03:09 <eroman> .... <reinforcing the amount of work to expand the spec>
04:03:31 <hhalpin> Realistically, it would be great to have a new version within a month
04:03:58 <eroman> ... "It is very hard to answer that today"
04:04:30 <eroman> ... I think a better answer is: On our next call following this, once I've had a chance to coordinate with my colleges and work though scheduling efforts I can give a better idea.
04:04:53 <eroman> MarkW: <Offers to help on making the spec edits to help out Ryan>
04:05:12 <eroman> virginie: Let's talk about that during our next call in 2 weeks (or a little bit more)
04:05:17 <hhalpin> q?
04:06:59 <eroman> virigine: The TAG is tasked with reviewing our specification. There are 2 aspects to review: Review the spec for the sake of spec, and then the use of Promises.
04:07:21 <eroman> virginie: Action for the chair is to "resend them that"
04:07:32 <hhalpin> ACTION: virginie to re-ping Alex Russell on status of Promises and WebCrypto
04:07:32 <trackbot> Created ACTION-129 - Re-ping alex russell on status of promises and webcrypto [on Virginie GALINDO - due 2013-11-22].
04:07:54 <eroman> ... We received some intermediate comments from Privacy group (particularly on Key Discovery), Mark has started to address that
04:08:03 <hhalpin> ACTION: virginie needs to check that the review by the PING has been answered
04:08:03 <trackbot> Created ACTION-130 - Needs to check that the review by the ping has been answered [on Virginie GALINDO - due 2013-11-22].
04:08:09 <eroman> ... Action for the chair is to make sure they are happy with those answers
04:08:30 <markw> q+
04:08:31 <eroman> ... Comment from experts (Dan Bonneh), make sure they are happy with our answers
04:08:41 <hhalpin> ACTION: hhalpin to schedule Dr. Boneh to return to see if he's satisfied with current answers to his review.
04:08:41 <trackbot> Created ACTION-131 - Schedule dr. boneh to return to see if he's satisfied with current answers to his review. [on Harry Halpin - due 2013-11-22].
04:09:18 <eroman> ... "synchronizing with the IETF security work". This is more like a general concern that the IETF is having some high activity on the security aspects. But at the moment we don't have any direct action.
04:09:34 <eroman> ... As chair I am very happy to have feedback from other working groups (i.e. Web RTC).
04:09:49 <eroman> HarryH: <???>
04:10:24 <csjung> csjung has joined #crypto
04:10:46 <eroman> HarryH: As far as IETF coordinate we just have to email them, and then it is in their hands
04:11:02 <virginie> q?
04:11:39 <hhalpin> As regards co-ordination with the rest of IETF and W3C, we should ping everyone when we hit Last Call
04:12:01 <eroman> MarkW: If you have something that can be done with JOSE structures that is not part of that (JWK/JWE work), then do it in your own registries.
04:12:03 <hhalpin> And we should not limit or hold up this work if we do not get a response, if we do, we deal with it using normal Last Call comment process.
04:12:31 <eroman> rsleevi: In order to have an IANA registry, JOSE needs to get their stuff out.
04:12:33 <hhalpin> We can not hold up progress based on future work, we should assume future work will use the API in its current form or ask new features in v.Next of WebCrypto
04:12:47 <eroman> ... <Points out the chicken-and-egg problem with needing registry to already exist>
04:13:26 <rbarnes> in case that was inaudible, JOSE is really getting toward finishing their specs
04:13:59 <eroman> karen: I think we are looking for working group last call in January. All the normative changes are in "dash 18" part of the specification.
04:14:06 <eroman> virginie: Let me finish with the review
04:14:10 <rsleevi> s/karen/kodonog/
04:14:39 <eroman> virginie: I think we are done unless you have some comments
04:15:03 <hhalpin> topic: future work of WebCrypto
04:15:14 <eroman> virginie: So we can start the discussion of the future work now, before lunch. So let's take 20 minutes for the high level API
04:15:20 <eroman> TOPIC: High level API for future work
04:15:58 <hhalpin> notes that if anyone wants to make a draft high-level API, I am happy to set-them up with a space to do so
04:16:29 <eroman> virginie: Background: High level API is about doing some action without worrying about the lower level mechanisms (Like a one click button)
04:16:30 <rsleevi> notes that previously rbarnes mikejones and ddahl were tasked with proposing a high level API
04:16:51 <israelh> israelh has joined #crypto
04:17:02 <eroman> richard burnes: I thin we had one call after the last face to face. So no progress on this one.
04:17:07 <rbarnes> s/burnes/barnes/
04:17:24 <eroman> s/thin/think
04:17:41 <mete> q+
04:17:43 <vgb> q+
04:17:51 <markw> q+
04:18:05 <kodonog> (backing up briefly... the latest status of the jose specifications are represented in this email... http://www.ietf.org/mail-archive/web/jose/current/msg03700.html)
04:18:07 <eroman> mete: I believe there needs to be a high level API, but it doesn't need to be specified here
04:18:08 <rbarnes> mete is not audible
04:18:23 <mountie> +1 no need high level API
04:18:24 <israelh> q+
04:18:29 <eroman> mete: <something inaudible>
04:18:51 <rsleevi> s/<something inaudible>/developers can implement their own high-level API, the low-level primitives are there/
04:19:17 <rsleevi> +1 to Vijay's comments
04:19:28 <rsleevi> +1 to markw
04:19:48 <eroman> vijay: We have been talking about the high level API for a long call. Perhaps we should wait to see how people use v1 and then make a decision. For instance if something is extremely common in v1 we can make a better decision about it in v2.
04:20:17 <eroman> MarkW: <Points out that developers can build a high level API built on top of the low level API>
04:20:28 <rsleevi> q+
04:20:28 <MichaelH> q+
04:20:30 <rbarnes> as i've said before, when you screw up your webgl, (1) it's obvious or it doesn't matter, and (2) sensitive data isn't exposed.  crypto is special
04:20:37 <eroman> Israel: <missed it>
04:20:47 <eroman> rsleevi: I really want to echo a strong +1
04:20:51 <markw> q+
04:21:48 <eroman> ... I think we will say a variety of use cases. (Gives example of Mozilla's pdf.js). "So big +1 to giving other libraries a chance to figure it out"
04:21:51 <israelh> answer rbarnes: very few people use webgl directly, they use libraries.
04:22:06 <eroman> MichaelH: <Also +1s the sentiment>
04:22:34 <rsleevi> q+
04:23:43 <eroman> MarkW: We should be on the lookout for what people can't do with the low level API, and then consider targeting small extensions the low level API to make them possible
04:23:49 <rbarnes> q+
04:24:03 <hhalpin> that being said, I'd be interested if anyone *actually* has plans to make a high-level API - and if someone sees one in the wild being developed, please email the mailing list so we are aware of it.
04:24:18 <eroman> Richard Barnes: <Points out that the mission statement for this Working Group includes defining a high level API>
04:24:31 <rbarnes> i still believe in the cause, it's just fallen behind some other things in the queue
04:24:51 <mete> hhalpin, we can develop one surely, for specific use cases probably
04:24:53 <eroman> rsleevi: [Talking to Harry] When we rechartered I thought we agreed to clarify that wording.
04:25:09 <israelh> q+
04:25:14 <hhalpin> ACTION: hhalpin to remove "high-level" term in next revision of charter
04:25:14 <trackbot> Created ACTION-132 - Remove "high-level" term in next revision of charter [on Harry Halpin - due 2013-11-22].
04:25:20 <eroman> virginie: I must first get some feedback for the usage of the current specification
04:25:50 <eroman> ... < Doesn't want to kill the topic>
04:26:57 <eroman> Israel: I would close the issue, and not deal with it until libraries show up. So in a sense a little bit of the opposite of what you are saying. Take it off the charter. More than happy to give feedback on people writing libraries. More than happy to help people writing libraries. But I wouldn't say it is in our charter because it confuses things. We can
04:26:57 <eroman> come back next year and say we are at a stage where we can add it back to the charter. But I don't think keeping it in the charter now is going to help.
04:27:36 <eroman> virgine: Next time we recharter for a good reason we take out the high level API
04:27:48 <mountie> +1 rechartering removing high-level API
04:27:57 <rsleevi> q?
04:28:37 <eroman> ... not enough market maturity, will remain low priority for now
04:28:54 <eroman> virginie: <Discussing the topics that will be covered after lunch>
04:29:14 <ChristianFuhrhop> ChristianFuhrhop has left #crypto
04:29:31 <Zakim> -[Mozilla]
04:29:32 <rsleevi> Break for 1.5 hours
04:29:34 <eroman> virginie: Break for 1.5 hours. Reconvene at 2 Shenzhen time. See you in an hour and a half!
04:29:37 <Zakim> -Wuzhou_East
04:29:42 <Zakim> -vgb
04:29:43 <Zakim> SEC_WebCryp()8:00PM has ended
04:29:43 <Zakim> Attendees were vgb, Wuzhou_east, [Mozilla]
04:29:48 <wseltzer> rrsagent, make minutes
04:29:48 <RRSAgent> I have made the request to generate http://www.w3.org/2013/11/15-crypto-minutes.html wseltzer
04:29:58 <virginie> thnaks eric for scribing
04:30:01 <eroman> s/2/14:00/
04:36:12 <tao> tao has joined #crypto
04:46:45 <taocai> taocai has joined #crypto
04:49:34 <kotakagi> kotakagi has joined #crypto
05:17:58 <mete> mete has joined #crypto
05:22:05 <tantek> tantek has joined #crypto
05:24:05 <danny_> danny_ has joined #crypto
05:26:38 <israelh_> israelh_ has joined #crypto
05:40:35 <ekr> ekr has joined #crypto
05:40:43 <manu2> manu2 has joined #crypto
05:42:11 <rbarnes> rbarnes has joined #crypto
05:45:52 <kotakagi_> kotakagi_ has joined #crypto
05:47:05 <kotakag__> kotakag__ has joined #crypto
05:48:26 <mountie> mountie has joined #crypto
05:53:37 <rbarnes_> rbarnes_ has joined #crypto
05:54:22 <virginie> virginie has joined #crypto
05:55:28 <rbarnes_> zakim, what's the code?
05:55:28 <Zakim> the conference code is hidden, rbarnes_
05:58:20 <mete> mete has joined #crypto
05:59:29 <rbarnes> rbarnes has joined #crypto
05:59:31 <sangrae> sangrae has joined #crypto
06:00:50 <rbarnes__> rbarnes__ has joined #crypto
06:00:51 <virginie> hello crypto poeple !
06:00:58 <rbarnes__> zakim, what's the code?
06:00:58 <Zakim> the conference code is hidden, rbarnes__
06:01:08 <rbarnes__> virginie: there seems to be an issue with zakim
06:01:21 <rbarnes__> i tried both of the codes, and neither one worked
06:01:33 <jin> jin has joined #crypto
06:01:45 <wseltzer> zakim, this is CRYPT
06:01:45 <Zakim> sorry, wseltzer, I do not see a conference named 'CRYPT' in progress or scheduled at this time
06:02:00 <wseltzer> zakim, restart CRYPT
06:02:00 <Zakim> I don't understand 'restart CRYPT', wseltzer
06:02:34 <wseltzer> zakim, space for 5?
06:02:35 <Zakim> ok, wseltzer; conference Team_(crypto)06:02Z scheduled with code 26631 (CONF1) for 60 minutes until 0702Z
06:02:39 <virginie> to richard : we are trying to fix it
06:02:41 <wseltzer> zakim, code?
06:02:41 <Zakim> the conference code is 26631 (tel:+1.617.761.6200 sip:zakim@voip.w3.org), wseltzer
06:02:48 <MichaelH> MichaelH has joined #crypto
06:03:01 <Anders> Anders has joined #crypto
06:03:04 <wseltzer> zakim, call wuzhou_east
06:03:04 <Zakim> ok, wseltzer; the call is being made
06:03:05 <Zakim> Team_(crypto)06:02Z has now started
06:03:06 <Zakim> +Wuzhou_east
06:03:25 <MichaelH> q?
06:03:25 <virginie> to remote attendees, we are on the bridge
06:03:37 <kotakagi> kotakagi has joined #crypto
06:03:40 <virginie> zakim, who is on the phone ?
06:03:40 <Zakim> On the phone I see Wuzhou_east
06:03:42 <leckie> leckie has joined #crypto
06:03:42 <kotakagi> kotakagi has joined #crypto
06:03:47 <Zakim> +??P1
06:03:57 <virginie> hello P1 ? who are you ?
06:03:58 <vgb> vgb has joined #crypto
06:04:00 <rbarnes__> zakim ??P1 is me
06:04:06 <virginie> hi richard
06:04:23 <ChristianFuhrhop> ChristianFuhrhop has joined #crypto
06:04:23 <rbarnes__> there's some weirdness going on on zakim.  "the callee is busy now, please try again later"
06:04:31 <hhalpin> hhalpin has joined #crypto
06:04:58 <vgb> zakim, what's the code?
06:04:58 <Zakim> the conference code is 26631 (tel:+1.617.761.6200 sip:zakim@voip.w3.org), vgb
06:05:22 <Zakim> +vgb
06:06:07 <Zakim> -Wuzhou_east
06:06:14 <vgb> anyone having luck with the voice call?
06:06:36 <virginie> zakim, who is on the phone ?
06:06:37 <Zakim> On the phone I see ??P1, vgb
06:06:41 <nkic> nkic has joined #crypto
06:06:46 <rbarnes> zakim, ??P1 is me
06:06:46 <Zakim> +rbarnes; got it
06:06:54 <virginie> richard, can u hear us ?
06:07:02 <rsleevi> Zakim, dial Wuzhou_East
06:07:02 <Zakim> ok, rsleevi; the call is being made
06:07:04 <Zakim> +Wuzhou_East
06:07:06 <virginie> sorry, high confusion, here
06:07:16 <vgb> now we can hear you
06:07:18 <hhalpin> :)
06:07:26 <israelh_> israelh_ has joined #crypto
06:07:48 <kodonog> kodonog has joined #crypto
06:08:03 <rsleevi> scribenick: rsleevi
06:08:08 <rsleevi> TOPIC: Testing
06:08:32 <rsleevi> virginie: In the last F2F, we met with rberjon explaining the status of testing within the W3C
06:08:54 <rsleevi> ... is now the right time to speed up on the testing? Is there existing material? Do we need to setup a training program for people interested?
06:09:07 <rsleevi> ... I imagine tests will come when the implementations progress
06:09:12 <rsleevi> ... is there anything we can do now
06:09:13 <rsleevi> q+
06:09:59 <csjung> csjung has joined #crypto
06:10:04 <tony> tony has joined #crypto
06:10:29 <rsleevi> rsleevi: I think implementors will be writing tests as they're doing their implementation
06:10:35 <rsleevi> ... and then working to contribute those up
06:10:36 <nvdbleek> nvdbleek has joined #crypto
06:10:51 <nvdbleek> zakim, code?
06:10:51 <Zakim> the conference code is 26631 (tel:+1.617.761.6200 sip:zakim@voip.w3.org), nvdbleek
06:10:54 <rsleevi> israelh_: We've been writing tests, but they're based on our event-based implementation. Not exactly useful for the current version of the spec
06:11:10 <rsleevi> ... Generally pretty good at getting tests upstream though
06:11:27 <rsleevi> virginie: Do we need someone who will manage test activities? How do we organize testing?
06:11:38 <rsleevi> ... Do you need someone else to examine the work? What's the status?
06:11:50 <Zakim> +nvdbleek
06:12:01 <rsleevi> israelh_: I think it'd be great to have a person in charge of collecting tests and connect with efforts like Test the Web Forward
06:12:11 <rsleevi> ... similar to how WebApps is progressing
06:12:16 <Gang> Gang has joined #crypto
06:12:28 <rsleevi> ... would be good from their end to have someone to coordinate with and work on coverage
06:12:49 <virginie> to nick ; we just started the test discussion
06:12:49 <rsleevi> MichaelH: Is the format for your internal tests the same format as the W3C tests?
06:13:11 <rsleevi> israelh_: No, we convert to the W3C format. Still working on the transition to the new testing
06:14:21 <tony_> tony_ has joined #crypto
06:14:50 <rsleevi> rsleevi: Implementors tend to do continuous integration tests, regardless of the W3C testing infrastructure. Usually have two sets of tests
06:15:04 <rsleevi> MichaelH: Are you saying there are different types of tests - unit tests vs system tests
06:15:07 <hhalpin> hhalpin has joined #crypto
06:15:29 <virginie> q?
06:15:33 <mete> q+
06:15:40 <hhalpin> the test-suite for this will be substantial and I'm happy to take a volunteer as test-suite manager
06:15:41 <rsleevi> israelh_: Yes; there are different parts to testing. Some are positive tests (does this work), some are negative (make sure this doesn't work)
06:15:57 <nvdbleek> zakim, mute me
06:15:57 <Zakim> nvdbleek should now be muted
06:16:00 <hhalpin> however, we can wait for that until some tests actually appear
06:16:02 <rsleevi> ... need to decide what sort of sequences we want to test. It's not 'just' a simple API test
06:16:08 <hhalpin> that people want to contribute
06:16:13 <taocai> taocai has joined #crypto
06:16:26 <hhalpin> q+
06:16:35 <rsleevi> ... will be doing end-to-end testing, but will be based on specific scenarios and use-cases. Not sure if that belongs in the W3C or not, looking for feedback
06:17:41 <rbarnes> that's kind of silly.  couldn't we at least say you MUST implement one algorithm per operation type?
06:17:47 <hhalpin> x=2
06:17:50 <rbarnes> s/one/at least one/
06:18:17 <hhalpin> there will be matrix of supported algorithms before leaving CR
06:18:18 <nvdbleek> In other groups 2 implementations of an optional features is enough
06:18:21 <virginie> q?
06:18:35 <rsleevi> mete: Can we just test the recommended algorithms?
06:19:11 <rsleevi> rsleevi: Our exit criteria for CR is X number of interoperable implementations. You could implement the WebCrypto spec without implementing any algorithms. We've been talking about X number of implementations of a given algorithm, and each of those algorithms would have tests
06:19:56 <rsleevi> hhalpin: As implementors progress on implementation, if they want help with writing tests, can contact hhalpin and work with tobie on test training
06:20:10 <mete> q+
06:20:19 <rsleevi> ... I will double check to make sure we go through CR properly. We'll likely have a matrix of algorithms, what implementations support what algorithms
06:20:23 <csjung> csjung has joined #crypto
06:20:25 <rsleevi> ... the main hard thing is making sure the tests are checked in
06:20:50 <rsleevi> mete: Can help somehow, but not sure how, if someone can provide guidance
06:20:55 <hhalpin> Note we've had several people volunteer but it's kinda pointless until tests appear
06:21:04 <rsleevi> virginie: Harry & Tobie can help organize
06:21:18 <hhalpin> I'll re-send out the testing email.
06:21:35 <hhalpin> ACTION: hhalpin to remind people how it the test repo works
06:21:35 <trackbot> Created ACTION-133 - Remind people how it the test repo works [on Harry Halpin - due 2013-11-22].
06:21:39 <virginie> thxs harry
06:23:08 <hhalpin> Here's an example from Canvas in HTML of testing for CR with features at risk:
06:23:08 <hhalpin> http://dev.w3.org/html5/misc/canvas-implementation.html
06:23:35 <virginie> q?
06:23:56 <rsleevi> MichaelH: When MSFT contributes a test, would you run it against other implementations?
06:24:09 <hhalpin> Here's the master HTML test-suite: http://w3c-test.org/web-platform-tests/master/tools/coverage/
06:24:13 <rsleevi> rsleevi: Yes. If MSFT contributed tests, we'd run it against Blink. Likewise, if Chromium contributed tests, we'd run it against MSFT's implementation
06:24:30 <rsleevi> MichaelH: What about if you don't implement an algorithm? Would one implementation pass the test, another fail?
06:24:39 <rsleevi> rsleevi: Yeah, but that's fine. We'd have the matrix of support ala WebApps
06:24:41 <rsleevi> TOPIC: V2
06:24:50 <minami> minami has joined #crypto
06:25:06 <rsleevi> virginie: We've had a lot of topics raised on the mailing list that we've said "That'd be nice, but let's revisit that in the future"
06:25:19 <rsleevi> ... goal is not to establish a mandatory roadmap binding members to next steps
06:25:29 <rsleevi> ... but just to get an idea of what features are important for members
06:25:38 <rsleevi> ... so that we can establish a wiki and begin tracking steps
06:25:49 <mete> q+
06:25:56 <virginie> q?
06:25:57 <hhalpin> tests are now centralized here BTW: https://w3c-test.org/
06:26:04 <hhalpin> I'll send an update here.
06:26:05 <rsleevi> mountie: We have waited for many months for certificates
06:26:12 <israelh_> q+
06:26:20 <rsleevi> ... we have seen the mailing list interest in certificates
06:26:32 <rsleevi> ... we only have one line in our charter regarding certificates
06:26:46 <rsleevi> ... may need to recharter to clarify what aspects of certificates are in scope and which are out of scope
06:26:49 <manu1> manu1 has joined #crypto
06:27:06 <rsleevi> ... There is a lot of interest from the Korean membership in certificate management - issuing, renewing, and revoking
06:27:18 <rsleevi> ... which are the baseline for managing certificates
06:27:32 <hhalpin> Secondary API Features that *may* be in scope are:  ... the lifecycle control of credentials such enrollment, selection, and revocation of credentials with a focus enabling the selection of certificates for signing and encryption.
06:27:44 <rsleevi> virginie: We've allocated time for certificates
06:27:50 <hhalpin> q+
06:28:14 <rsleevi> mete: As mentioned on the mailing list, the first thing desired would be access to the hardware components (smart cards, etc)
06:28:24 <rsleevi> ... will this ever be possible? Is there any blocking issue?
06:28:43 <rsleevi> ... wanted to know from browsers/UAs what the issues would be. Is it too hard? Will it just take time?
06:28:53 <rsleevi> ... the next thing would be more attributes or features of the keys
06:29:05 <rsleevi> ... eg: a way to be sure that a key is locked to a specific computer
06:30:00 <rsleevi> israelh_: Just to make sure we continue talking about streams and multi-part as the natural evolution
06:30:32 <rsleevi> hhalpin: I think there's two separate things going on. One is a desire to hardware/smartcard features
06:30:37 <rsleevi> ... the other is streams
06:30:55 <rsleevi> ... hardware/smartcard is a huge discussion. Maybe another spec. Maybe need a workshop to figure out scope, to get more vendors
06:31:04 <rsleevi> ... streams may be more straightforward. May not even be a major revision
06:31:37 <nvdbleek> +1 for smart card (secure elements) access in the next version of the spec
06:31:42 <rsleevi> ... Question for the group: Would the group be OK with going to management and saying "Yes, more or less as a WG we'd like to be rechartered for V1.1 or V2.0"
06:32:01 <rsleevi> ... similar to how WebApps/WebAppsSec operate
06:32:21 <rsleevi> ... that is, keep the group rechartering as we take on new work
06:32:33 <rsleevi> ... Next question is: Does the WG support going directly to hardward/smartcard features?
06:32:55 <MichaelH_> MichaelH_ has joined #crypto
06:32:55 <Anders> q?
06:33:39 <israelh_> q+
06:34:10 <mete> any technical reasons ?
06:34:18 <virginie> q?
06:34:49 <rsleevi> rsleevi: +1 to working on streams / multi-part
06:35:01 <rsleevi> ... not that interested in hardware elements
06:35:26 <rsleevi> ... lots of concerns related security and privacy implications; technical interoperability
06:35:52 <rsleevi> israelh_: There is interest in hardware, but not sure if it's part of the WebCrypto API
06:35:53 <mete> q+
06:36:06 <rsleevi> ... need to work through the real world use cases and what the API looks like
06:36:17 <virginie> ack israelh_
06:36:24 <Anders> anders q+
06:36:28 <mountie> q+
06:36:39 <rsleevi> ... the days of "Hey, I have something, I want the API to support it" may be over. Want to make sure a solution is usable for the market, but that may look different than existing solutions
06:37:00 <rsleevi> mete: The current API is not useful for financial use cases.
06:37:12 <rsleevi> virginie: Clarification - Do you mean the crypto or the keys?
06:37:19 <rsleevi> mete: Keys and how they're used
06:37:50 <rsleevi> mountie: The use of smart cards or secure element is connected with securing the key storage
06:38:03 <rsleevi> ... Still have questions regarding how keys can be protected from the attackers
06:38:14 <rsleevi> ... maybe in the next version, we can set guidelines for how the key store can/should be protected
06:38:28 <virginie> q?
06:39:17 <rsleevi> anders: I'm interested in something key discovery, such as Michael had suggested, but smartcards may be a completely different issue and standardization effort
06:39:31 <hhalpin> PROPOSAL: The WebCrypto Working Group expects to be rechartered for future versions on an ongoing basis (similar to WebApps)
06:39:33 <markw> markw has joined #crypto
06:39:50 <israelh_> +1
06:39:51 <mete> +1
06:39:55 <mountie> +100
06:39:55 <nvdbleek> +1
06:39:55 <sangrae> +1
06:39:57 <rsleevi> +1
06:40:01 <kodonog> +1
06:40:03 <jin> +1
06:40:07 <rbarnes> +1
06:40:10 <MichaelH_> +1
06:40:15 <hhalpin> Sounds like consensus
06:40:43 <rsleevi> RESOLVED: hhalpin to discuss with W3C leadership the future of the group
06:41:14 <hhalpin> PROPOSAL: the W3C should have a workshop this year looking at smartcards and hardware token use-cases and existing landscape API landscape
06:41:24 <nvdbleek> +1
06:41:37 <sangrae> +1
06:41:38 <mete> +1
06:41:40 <jin> +1
06:41:44 <hhalpin> s/this year/next year
06:41:44 <rsleevi> clarification: next year (2014)
06:41:56 <MichaelH_> +2
06:41:57 <mountie> +1
06:42:32 <hhalpin> RESOLVED: the W3C should have a workshop NEXT year looking at smartcards and hardware token use-cases and existing landscape of APIs
06:42:53 <kodonog> +1
06:43:24 <rsleevi> virginie: It seems Streams is a natural next step as it keeps coming up
06:43:32 <rsleevi> ... as long as Streams gets stable
06:44:04 <minami> minami has joined #crypto
06:44:28 <rsleevi> virginie: <confirms that we have members who participate/follow the Streams activity>
06:44:34 <rsleevi> rsleevi: <confirms>
06:44:44 <rsleevi> TOPIC: Manu to discuss Web Payments CG
06:44:50 <rsleevi> manu: <introductions>
06:45:06 <manu1> manu: In general, the purpose of the Web Payments work at W3C is to integrate payments into the core architecture of the Web.
06:45:06 <manu1> manu: The work touches on identity, security, mobile, banking, and financial industry in general. There is a lot of coordination that will need to be done if we are going to be successful. One of the groups that we need to coordinate with is the Web Crypto group.
06:45:07 <manu1> manu: These are the moving parts associated with the Web Payments work:
06:45:33 <leckie> leckie has joined #crypto
06:45:33 <manu1> manu: SysApps - Secure Element API is vital for high-value financial transactions. How does it work with Web Crypto, NFC, Offline and the Web Payments stack?
06:45:33 <manu1> manu: WebCrypto - Web Crypto API is important for doing client-side digital signatures for purchasing. How do you coordinate a Secure Element w/ the Web Crypto API to perform a digital signature on a purchase request or purchase authorization?
06:45:34 <manu1> manu: NFC - NFC API is important for both online and offline purchases, does it integrate cleanly with Secure Element, Web Crypto, and Web Payments?
06:45:34 <manu1> manu: Geolocation - There are use cases where you would want to use geolocation to determine an indoor location when performing a purchase, such as access to a particular portion of a building (like a museum) based on payment. Authorization of purchases is also important (is your mobile phone in the same vicinity as the physical purchase you're performing?)
06:45:34 <manu1> manu: Offline - How do you perform an offline purchase using SysApps, WebCrypto and Web Payments. Is there a clear integration story for all of the applications?
06:45:34 <manu1> manu: Web Payments - Making sure that the use cases are defined clearly up front with clear pointers to where and when Web Crypto is used.
06:47:22 <hhalpin> maybe you can explain what WebPayments is and what vendors currently support it?
06:48:38 <manu1> manu: In general, make sure there are clear technology integration stories for the crypto and identity use cases and be very aggressive at making sure the Working Groups are coordinated to ensure the realization of those use cases.
06:48:38 <manu1> manu: Here are a couple of useful links for learning a bit more about Web Payments
06:48:38 <manu1> manu: We had a breakout session on Wednesday that provided a quick introduction to the space: http://www.w3.org/wiki/TPAC2013/session-web-payments
06:48:39 <manu1> manu: The minutes from the breakout session are here: http://lists.w3.org/Archives/Public/public-webpayments/2013Nov/0035.html
06:48:39 <manu1> manu: We are planning a W3C Web Payments Workshop during the last week of March 2014 in Paris, we'll notify this group when we put out the Call for Position Papers. As you can imagine, cryptography plays a pivotal role in this work, so we hope to have participation from members in this group.
06:48:39 <manu1> manu: If you want a technical introduction to the space, you can go here: https://payswarm.com/intro
06:48:39 <manu1> manu: If you want to join the Web Payments CG, instructions on how to do so are here: https://payswarm.com/join
06:51:12 <rsleevi> virginie: <echoes hhalpin's IRC question>
06:51:59 <fan_> fan_ has joined #crypto
06:52:11 <rsleevi> manu: There are a variety of participants, not just browsers. Mozilla, Bloomberg, Orange. Additionally, several governments and banks "that are interested, but can't publicly commit yet". Very broad set of players with various, sometimes conflicting, interests
06:52:30 <rsleevi> hhalpin: When the workshop is ready, an email to the list would be good
06:53:04 <manu1> Web Payments use cases: https://payswarm.com/specs/source/use-cases
06:53:29 <rsleevi> virginie: Web Payments is a huge space. Can you keep something focused and specific, so it's not a matter of reading hundreds of pages of use cases?
06:53:47 <rsleevi> manu: Sure. The core is "Web Payments exists. We're dependent on Web Crypto. We should work together"
06:54:17 <virginie> q?
06:54:17 <rsleevi> virginie: Good action item is when you host the workshop, circulate on the list for participants, as well as report back on the workshop
06:54:37 <rsleevi> TOPIC: JSON-LD signature requirements
06:54:46 <manu1> manu: Switching to a parallel track. There is one set of specs that deals with JSON-LD based digital signatures.
06:54:46 <manu1> manu: I saw that this group is dealing with the JOSE/JWK/JWT stack and has defined a key import mechanism for that.
06:54:46 <manu1> manu: The HTTP Keys spec (aka: Secure Messaging spec) defines a public key infrastructure built on top of the Web: https://payswarm.com/specs/source/http-keys/
06:54:47 <manu1> manu: In this specification, there is a way of expressing key information in JSON-LD. How do we import those keys using the Web Crypto API? Is there a way to extend the import mechanism for keys in the Web Crypto API?
06:55:41 <rbarnes> manu1: would be interested to hear why JOSE didn't meet your use case, but that's probably for offline
06:56:03 <hhalpin_> hhalpin_ has joined #crypto
06:56:30 <rbarnes> no, there isn't :)
06:56:32 <hhalpin_> I think another key format would have to be justified.
06:56:33 <rsleevi> manu: Main question is there a way to extend the import mechanism. Is there a generic key import mechanism
06:56:35 <rsleevi> q+
06:56:44 <rbarnes> jwk is so braindead simple, just use it?
06:58:14 <rsleevi> rsleevi: Echoes IRC comments. No generic import, supports JWK, pkcs8, and SPKI - just convert your keys to that
06:58:32 <rsleevi> manu: Mentions theres a blog post explaining why JWK wasn't sufficient, very long, may not be worth discussing during the F2F
06:58:48 <manu1> manu: Secure Messaging vs. JOSE: http://manu.sporny.org/2013/sm-vs-jose/
06:58:57 <rsleevi> virginie: <Calls for any further comments on future work>
06:59:46 <rsleevi> TOPIC: Workgroup life
07:00:06 <rsleevi> virginie: Wanted to confirm that the current approach to the WG is working. Is meeting every two weeks productive?
07:00:06 <hhalpin_> +1
07:00:10 <sangrae> +1
07:00:11 <nvdbleek> +1
07:00:14 <virginie> +1
07:00:16 <jin> +1
07:00:16 <rsleevi> virginie: Is meeting every two weeks helpful
07:00:18 <kodonog> +1
07:00:27 <mete> +1
07:00:34 <rsleevi> -1
07:00:44 <nvdbleek> zakim, who is on the phone?
07:00:44 <Zakim> On the phone I see rbarnes, vgb, Wuzhou_East, nvdbleek (muted)
07:01:01 <rbarnes> ack
07:01:03 <rbarnes> ack rbarnes
07:01:04 <mountie> +1 with time adjusted for asian members
07:01:18 <rbarnes> mistook the phone list for the queue
07:01:31 <rbarnes> agree with ryan that 2-week calls are not necessarily needed
07:01:51 <israelh_> israelh_ has joined #crypto
07:01:53 <hhalpin_> Probably a co-editor would help progress more than more meetings
07:01:54 <rbarnes> might be worth having a longer call to look at LC comments
07:02:40 <rbarnes> well, a call of appropriate length for the volume of LC comments :)
07:03:58 <hhalpin_> I'm fine with either biweekly or monthly (every 4 weeks)
07:05:04 <rsleevi> rsleevi: For Web Crypto API, not sure as much value from meeting every two weeks. Of course, WG has more than just Web Crypto API
07:06:05 <rsleevi> virginie: As Chair, want to make sure members are aware of technical issues and have a chance to discuss
07:06:35 <MichaelH> MichaelH has joined #crypto
07:06:45 <rsleevi> virginie: Perhaps meeting for Web Crypto API once a month, and every other call discusses other topics (eg: Web Payments CG, future work, certificates)
07:07:24 <nvdbleek> 21:00 UTC is quite late for Europe when we go back to summer time
07:07:26 <rsleevi> virginie: Next, there's been a request for rescheduling the call
07:07:41 <minami> minami has joined #crypto
07:08:08 <MichaelH> MichaelH has joined #crypto
07:08:52 <mountie> 1500 UTC / 8am San Francisco / 11am Boston / 4pm London
07:09:25 <rsleevi> rsleevi: Requests that if we deferred decision making to the list, rather than phone calls, the choice of time for the calls would be less critical
07:09:51 <sangrae> +1
07:09:52 <rbarnes> +!
07:09:55 <virginie> +1
07:09:56 <rbarnes> er, +1
07:09:59 <mountie> +1
07:10:01 <markw> -1
07:10:02 <MichaelH> +1
07:10:02 <mete> +1
07:10:03 <jin> +1
07:10:03 <rsleevi> PROPOSAL: Move meeting time to 1500 UTC
07:10:05 <rsleevi> -1
07:10:06 <hhalpin_> +1
07:10:13 <nvdbleek> 0
07:10:17 <vgb> -1
07:10:25 <hhalpin_> Well, West Coast people are unhappy with 8:00 AM.
07:10:54 <mountie> 1600 UTC can be ok
07:10:56 <hhalpin_> Given all implementers are giving -1, we should take that seriously
07:10:57 <rbarnes> any later, and it will be even more unworkable for the asian crowd
07:11:20 <rbarnes> apparently the east coast is in the happy zone, so i don't care
07:11:20 <rsleevi> PROPOSAL: What about 1600 UTC
07:11:24 <rbarnes> +1
07:11:28 <hhalpin_> +1
07:11:29 <mountie> +1
07:11:36 <virginie> +1
07:11:41 <sangrae> +1
07:11:43 <jin> +1
07:11:55 <vgb> +1 i can live with this though i don't know about israel
07:12:00 <MichaelH> +1
07:12:09 <mete> +1
07:12:11 <rsleevi> +1 can live with it; especially if we move key decision making to the list
07:14:20 <rsleevi> virginie: Ok, let's move to 1600, and if no one from W3C can make it, we can revisit
07:15:49 <rsleevi> ... also, can revisit decision making on the call
07:16:11 <rsleevi> MichaelH: Can I request people on the mailing list provide some sort of indication to what they're replying to?
07:16:41 <hhalpin_> IETF is I think March 1-7th in London
07:16:48 <rsleevi> rsleevi: +1. Some members' mail clients aren't configured ideally. W3C has various guides on mailing list etiquette. If you're not sure how your messages look, check the HTML mail archives
07:17:16 <kotakagi> kotakagi has joined #crypto
07:17:16 <hhalpin_> We'd have to have f2f *after* IETF or the week before the IETF meeting, as there's a Web Security workshop I believe during that weekend.
07:17:19 <rsleevi> virginie: IETF is having a meeting in March. Would it make sense to co-locate a F2F near the IETF in order to have good overlap
07:17:34 <rsleevi> ... Question: Would it make sense to have a F2F in march
07:17:51 <nvdbleek> +1
07:18:05 <israelh> israelh has joined #crypto
07:18:27 <hhalpin_> Maybe can we ask "Who would come to London for a f2f"?
07:18:46 <rbarnes> i will be there for the ietf meeting
07:18:55 <rbarnes> would be willing to stick around / come early
07:19:17 <sangrae> +1
07:19:19 <virginie> +1
07:19:19 <hhalpin_> +1
07:19:27 <israelh> ?1
07:19:27 <rsleevi> +0 - not sure if I'll be going to IETF, but if I am, I would be happy to stick around
07:19:28 <jin> +1
07:19:33 <mete> +1
07:19:34 <markw> +1
07:19:39 <rigo> +1
07:19:51 <kodonog> +1 (in the sense that I'll be there and would stay)
07:21:22 <rsleevi> virginie: These answers aren't binding, just gauging interest. We'll only hold a F2F is there's an interesting agenda of topics to discuss. Will likely revisit this in January when we have a better idea of further work
07:21:37 <rsleevi> Break for 30 minutes
07:22:05 <Zakim> -nvdbleek
07:22:07 <Zakim> -Wuzhou_East
07:22:10 <Zakim> -vgb
07:22:17 <rbarnes> just my luck, the coffee maker here is missing critical parts :(
07:22:48 <csjung> csjung has joined #crypto
07:27:11 <Zakim> disconnecting the lone participant, rbarnes, in Team_(crypto)06:02Z
07:27:12 <Zakim> Team_(crypto)06:02Z has ended
07:27:12 <Zakim> Attendees were Wuzhou_east, vgb, rbarnes, nvdbleek
07:30:51 <tao> tao has joined #crypto
07:35:23 <taocai> taocai has joined #crypto
07:46:32 <mountie> mountie has joined #crypto
07:50:31 <tao> tao has joined #crypto
07:51:00 <rbarnes> zakim, what's the code?
07:51:00 <Zakim> the conference code is hidden, rbarnes
07:51:08 <rbarnes> i hate it when zakim is enigmatic
07:52:25 <vgb> vgb has joined #crypto
07:53:04 <vgb> zakim, code?
07:53:04 <Zakim> the conference code is hidden, vgb
07:53:15 <nvdbleek> nvdbleek has joined #crypto
07:53:16 <csjung> csjung has joined #crypto
07:54:02 <mete> mete has joined #crypto
07:54:22 <nvdbleek> nvdbleek has joined #crypto
07:56:40 <vgb> vgb has joined #crypto
07:57:13 <vgb> zakim, code?
07:57:13 <Zakim> the conference code is hidden, vgb
07:57:18 <MichaelH> MichaelH has joined #crypto
07:57:23 <virginie> virginie has joined #crypto
07:57:46 <nvdbleek> nvdbleek has joined #crypto
07:58:01 <wseltzer> zakim, space for 5?
07:58:02 <Zakim> ok, wseltzer; conference Team_(crypto)07:58Z scheduled with code 26631 (CONF1) for 60 minutes until 0858Z
07:58:05 <MichaelH> zakim, dial Wuzhou_east
07:58:05 <Zakim> ok, MichaelH; the call is being made
07:58:06 <Zakim> Team_(crypto)07:58Z has now started
07:58:08 <Zakim> +Wuzhou_east
07:58:20 <wseltzer> [re-starting: code: 26631]
07:58:32 <virginie> hello, seems we are in...
07:58:33 <MichaelH> zakim, who is on phone
07:58:33 <Zakim> I don't understand 'who is on phone', MichaelH
07:58:36 <nvdbleek> nvdbleek has joined #crypto
07:58:47 <Zakim> +??P0
07:58:47 <MichaelH> zakim, who is on the phone
07:58:48 <Zakim> I don't understand 'who is on the phone', MichaelH
07:58:49 <nvdbleek> zakim, code?
07:58:49 <Zakim> the conference code is 26631 (tel:+1.617.761.6200 sip:zakim@voip.w3.org), nvdbleek
07:58:51 <Zakim> -Wuzhou_east
07:58:51 <Zakim> +Wuzhou_east
07:58:54 <jackal> jackal has joined #crypto
07:58:56 <Zakim> +vgb
07:58:57 <virginie> hello
07:59:07 <rbarnes> zakim, ??P0 is me
07:59:07 <Zakim> +rbarnes; got it
07:59:11 <Zakim> +nvdbleek
08:00:03 <MichaelH> zakim, who is on the phone?
08:00:03 <Zakim> On the phone I see Wuzhou_east, rbarnes, vgb, nvdbleek
08:00:20 <hhalpin_> Scribenick: hhalpin
08:00:39 <tony> tony has joined #crypto
08:00:48 <hhalpin_> @@: from ETRI
08:00:54 <hhalpin_> ... future work for certificates
08:01:01 <hhalpin_> ... will show demo and work on Certificate API
08:01:08 <wseltzer> s/@@/Sangrae_Cho/
08:01:09 <jin> s/@@/sangrae
08:01:17 <virginie> http://www.w3.org/2012/webcrypto/wiki/images/e/e8/WebCert_Requirement_.ppt
08:01:26 <vgb> thanks!
08:01:28 <virginie> presentation is available on the link above
08:01:39 <hhalpin_> sangrae: the banking use case in Korea
08:02:13 <hhalpin_> ... caserver.com issues a certficate to the browser
08:02:39 <hhalpin_> ... public key pair is generated in browser
08:03:41 <MichaelH> q+
08:03:45 <hhalpin_> ... then the user connects to bank.com and uses a signature generated by the client and gives it to the bank
08:03:55 <hhalpin_> ... then there is a backchannel connection
08:04:05 <hhalpin_> ... between cacserver.com and bank.com
08:04:19 <hhalpin_> MichaelH: What origin is this certificate generated for?
08:04:28 <MichaelH> ack
08:04:45 <mete> cert is issued to caserver.com
08:05:03 <hhalpin_> snagrae: key is generated with caserver.com origin
08:05:11 <hhalpin_> s/snagrae/sangrae
08:05:24 <jin> Answer is that certificate is issued by caserver.com.
08:05:25 <hhalpin_> ... going to look at API
08:05:56 <hhalpin_> then same key is then used on *other* origin? i.e. bank.com?
08:06:09 <hhalpin_> That seems to be same problem we had last f2f with that design
08:06:46 <hhalpin_> sangrae: getCertificate UA->CA
08:06:56 <hhalpin_> s/getCertficate/gencCertificate
08:07:09 <hhalpin_> CA sends a handleRep -> CA
08:07:23 <hhalpin_> genConfirm -> CA
08:07:58 <hhalpin_> Discussion of Cert interface
08:09:28 <hhalpin_> israelh: you should probably take on Promises to make this async
08:09:35 <virginie> rrsagent, please draft minutes
08:09:35 <RRSAgent> I have made the request to generate http://www.w3.org/2013/11/15-crypto-minutes.html virginie
08:09:39 <hhalpin_> ... otherwise usual problem of blocking a UI thread
08:10:34 <minami> minami has joined #crypto
08:11:46 <hhalpin_> sangrae: discussion of how Apps fit on top of API, and then how ETRI implements API in browser on top of CMP and PKCS#11
08:12:48 <rbarnes> so, it's clearly possible to do CMP in JS, without any help from the browser at all.  we have a polycrypt demo that makes self-signed certs; you could just as well make a CMP request.  http://demo.polycrypt.net/tls/
08:12:57 <hhalpin_> israelh: are these all done in binary?
08:13:18 <hhalpin_> sangrae: not a plug-in, it's our own version of Firefox
08:13:23 <mountie> http://sangraecho.github.io/WebCert/WebCertAPI-1011.html for latest spec
08:13:54 <markw> markw has joined #crypto
08:14:47 <hhalpin_> sangrae: demoing the issue of certificate with password
08:15:43 <hhalpin_> ... gets a Confirm Message
08:15:56 <hhalpin_> ... then demos that ou can revoke it
08:17:17 <tantek> tantek has joined #crypto
08:18:16 <MichaelH> q+
08:18:18 <hhalpin_> ... requires generatoion of public key, then import
08:18:42 <hhalpin_> MichaelH: You want to use WebCrypto for this?
08:18:49 <hhalpin_> sangrae: yes, if it's done in JS
08:19:33 <hhalpin_> ... response is then pushed into CMP
08:19:50 <hhalpin_> ... for digital signature verification and then storage of private key/cert to DB
08:20:58 <hhalpin_> MichaelH: How do you sign it with private key?
08:21:10 <hhalpin_> sangrae: It should be in memory or temporary storage
08:21:40 <hhalpin_> ... requirements:
08:21:47 <hhalpin_> 1) Private key wrapped/unrwapped using a password
08:21:56 <hhalpin_> 2) Private key wrapped when not in use
08:22:07 <hhalpin_> 3) Password policy required for strong password
08:22:25 <hhalpin_> 4) Digital Singature API should support PKCS#7 or JOSE
08:22:42 <hhalpin_> 5) Cert STorage API where API can access a key and certificate DB i browser
08:23:05 <hhalpin_> 6) External secure device support, needs tpviate key to be sotred in smartcard/USIM in Kore (PKCS#11 compatible)
08:23:22 <hhalpin_> 7) Guideline to suggest better UI
08:23:38 <hhalpin_> Israelh: Is that a secure store for the Cert object?
08:23:42 <hhalpin_> sangrae: yes
08:23:49 <hhalpin_> markw: Why not use indexedDB?
08:24:00 <hhalpin_> mountie: security concerns
08:24:22 <ale> ale has joined #crypto
08:25:05 <hhalpin_> markw: putting in indexedDB does not change where key is stored
08:25:14 <hhalpin_> markw: key object just a reference to key in smartcard
08:25:20 <virginie> q?
08:25:27 <hhalpin_> mountie: would prefer to store key in smartcard or then in OS
08:25:28 <virginie> ack MichaelH
08:25:43 <mete> q+
08:25:50 <hhalpin_> markw: still, why not place cert of key in indexedDB?
08:26:06 <hhalpin_> mountie: the second problem is we cannot keep same origin policy
08:26:17 <hhalpin_> ... otherwise signature can only be generated on CA server
08:26:28 <hhalpin_> ... this is too different from current architecture
08:26:46 <hhalpin_> MichaelH: Why not use postMessage to send it across?
08:26:57 <hhalpin_> israelh: but you'd have to give them permissions
08:27:29 <hhalpin_> mountie: but there's lots of infrastructure already prepared (lists them)
08:28:48 <hhalpin_> mountie: certificate issued for human
08:29:09 <hhalpin_> israelh: certificate is assigned to human, not to domain
08:29:19 <virginie> zakim, who is on the bridge ?
08:29:19 <Zakim> I don't understand your question, virginie.
08:29:19 <hhalpin_> ... you want to open it up to banks, but not everybody else
08:29:28 <virginie> zakim, who is on the phone ?
08:29:28 <Zakim> On the phone I see Wuzhou_east, rbarnes, vgb, nvdbleek
08:29:42 <virginie> to remote attendees : is the sound ok with you guys ?
08:29:46 <hhalpin_> mountie: it should not be used on serverside, but the user wants
08:29:55 <hhalpin_> ... to override, then this is a problem
08:30:03 <hhalpin_> ... they should be able to expose their certificate to any domain
08:30:10 <vgb> @virginie: occasionally a bit choppy, but understandable
08:30:35 <virginie> cool, and we have a great scribe (thanks hhalpin_)
08:30:39 <vgb> @virginie: but i just lost a few phrases from what Michael said back there
08:30:44 <rbarnes> MIC: this sort of user-controlled access is exactly what systems like OpenID and OAuth are designed to provide.  they are all implemented using postMessage / redirects, without browser modifications.  it seems like you could achieve the control you want using WebCrypto in that sort of framework.
08:31:27 <rbarnes> virginie: the sound is a little choppy, but basically OK.  would help if people could stay close to the mic
08:31:49 <hhalpin_> (discussion of private key material threats and smartcards)
08:31:56 <israelh> israelh has joined #crypto
08:32:10 <markw> q+
08:32:45 <hhalpin_> mete: what is indexedDB's security model?
08:32:49 <hhalpin_> israelh: per domain
08:33:20 <virginie> q?
08:33:22 <hhalpin_> israelh: we have not specified how keys cannot be serialied and abused cross domain
08:33:25 <virginie> ack mete
08:34:22 <hhalpin_> israelh: or you could create a special cross-domain "user domain" for certificates where user has a password to authorize access to that special storage
08:34:32 <kotakagi> kotakagi has joined #crypto
08:34:59 <hhalpin_> israelh: but you'd have to certify your browser per solution unless you want to
08:35:17 <hhalpin_> markw: wherever key material is stored, it should not get more or less securiy if key reference is in indexedDB
08:35:26 <hhalpin_> israelh: but if I take that DB somewhere else
08:35:41 <rbarnes> markw speaks the truth
08:35:42 <virginie> ack markw
08:35:44 <hhalpin_> markw: but if key material is bound to a device, then you can't copy that indexedDB somewhere else and use it
08:36:07 <hhalpin_> israelh: what kind of veneer to you put on top of that storage?
08:36:27 <hhalpin_> ... can you mount key references as a new database?
08:36:32 <hhalpin_> ... that's what we need to figure out?
08:36:49 <hhalpin_> markw: do you need to see inside certificate on client side or can it be an opaque blob?
08:36:54 <rbarnes> israelh: i don't think it makes sense at all to have the card be another DB.  it's just a backing store for keys, more or less transparently to the applicatoin
08:36:57 <hhalpin_> sangrae: you need to see it
08:37:10 <hhalpin_> markw: why?
08:37:13 <rbarnes> ... of course, there's an deep well of complexity in making smart cards work, which has no relation to this certs api
08:37:53 <hhalpin_> markw: I don't see why we need all of this certificate passing
08:38:12 <fan> fan has joined #crypto
08:38:12 <hhalpin_> markw: I generate key pair, send keypair, get some certificate
08:38:47 <israelh> answer to rbarnes: The reason is that you don't want to have the IDB infrastructure to be proxying requests to other stores.  This creates a multi-transaction coordination between the IDB in the system and the smart card.
08:38:58 <virginie> scribenick : virginie
08:39:11 <virginie> markw : why do you need to look at the certificate ?
08:39:32 <virginie> sangrae : you are not always able to access the public repository
08:39:49 <virginie> michael : the question is would the client ever look inside ?
08:40:16 <virginie> sangrae : when it is expired, you need to update it, for example
08:40:27 <virginie> markw : yes, but the CA would inform you about that
08:40:47 <virginie> ... looking inside at the certificate is not a simple think, as such I am looking for use cases
08:41:03 <rbarnes> x.509 in js: https://github.com/digitalbazaar/forge#x509
08:41:09 <virginie> israel : mark says that if it is opaque, then we might not need to look at it...
08:41:37 <virginie> michaelH : the fact is that the client shows you the certificate before u sign it
08:42:08 <virginie> sangrae : the client can access the certificate sometimes, to edit, or just to propose it in a list
08:42:26 <virginie> markw : yes, but the server can offer you the same service
08:42:39 <virginie> mointie : is the server is compromised, it could be a problem
08:42:52 <virginie> ... the certificate should be kept to avoid that threat
08:43:19 <virginie> israel : the reason why the certificate is kept, is I want to check my name is correctly written in it
08:43:38 <virginie> ... but is it goign to be managed directly by the client, sounds that no
08:44:01 <virginie> markw : the server is usefull to serve you the appropriate and same information
08:44:36 <virginie> sangrae : the server can not send you the certificate, you dont need to contact the CA, and use the local version to shop and go to your bank...
08:45:37 <virginie> [other conversation i could not catch]
08:45:57 <virginie> sangrae : going back to the requirement list in the presentation
08:46:21 <virginie> http://www.w3.org/2012/webcrypto/wiki/images/e/e8/WebCert_Requirement_.ppt
08:46:47 <virginie> israel : is the demo, when goign to the user asking for the certificate, do u expect that a user in real life will do that ?
08:47:04 <virginie> sangrae : smart card is not used at the moment
08:47:22 <Anders> q+
08:47:27 <hhalpin> hhalpin has joined #crypto
08:47:43 <virginie> mountie : today keys are stored in file system
08:47:47 <hhalpin> scribenick: hhalpin
08:47:53 <virginie> sangrae : in the future it will be secure token based
08:48:24 <hhalpin> anders: one comment focuussed on CMP
08:48:41 <hhalpin> ... CMP is not an end-to-end solution
08:49:35 <hhalpin> anders: the key container is the endpoint
08:49:42 <kotakagi_> kotakagi_ has joined #crypto
08:49:56 <kotakagi_> kotakagi_ has joined #crypto
08:50:17 <kotakagi_> kotakagi_ has joined #crypto
08:50:36 <virginie> scribe : karen
08:50:43 <kodonog> scribenick: kodonog
08:50:46 <tantek> tantek has joined #crypto
08:51:03 <kodonog> mountie: we have different definitions of end-to-end
08:51:20 <kodonog> anders: if you are going to smart cards, you need to rethink provisioning
08:51:41 <virginie> adding harry in the queue
08:51:47 <kodonog> ... end to end means different things, people to people, people to device
08:52:16 <kodonog> Anders: end user's don't understand security
08:53:05 <kodonog> presenter: lastly we need to a UI for certificate management & usage
08:53:26 <Anders> q+
08:53:28 <virginie> s/presenter/sangrae
08:54:01 <kodonog> virginie: misunderstood that you were presenting some new requirements
08:54:18 <kodonog> ... apologize for deferring the discussion
08:54:32 <kodonog> ... will go back to the working group to see if it is useful work
08:54:40 <MichaelH> q?
08:54:57 <MichaelH> ack
08:55:00 <kodonog> Anders: you want to have a PIN or password policy, how are you going to enforce that
08:55:26 <kodonog> sangrae: not sure yet, considering some options
08:55:27 <MichaelH> q?
08:55:30 <virginie> ack anders
08:56:04 <kodonog> virginie: this a big effort that will open lots of debate and controversial discussions,
08:56:10 <kodonog> ... need to park this somewhere.
08:56:40 <kodonog> Israelh: how many banks or financial institutions have come to you to indicate that they are ready to go with this
08:57:04 <kodonog> sangrae: this is already in place, they want to standardize the feature
08:57:15 <kodonog> israelh: are you being proactive when you ask
08:57:34 <kodonog> mountie: if this is implemented in the browser major korean banks will move today
08:57:55 <kodonog> israelh: how quickly? a year?
08:58:15 <kodonog> mountie: within a year perhaps half the CAs will start the service (Korean)
08:58:36 <kodonog> sangrae: CA server doesn't have to be changed if put in the browser
08:58:58 <kodonog> mountie: major institute in Korea and working with a major
08:59:06 <kodonog> ... certificate authority
08:59:44 <kodonog> Israelh: when will they be ready to deploy?
09:00:09 <kodonog> virginie: need to identify new features for v2 and get working group consensus
09:00:26 <mete> +1
09:00:37 <kodonog> QUESTION: who is interested in working on the certificate specification as it currently exists.
09:00:51 <rbarnes> -1
09:00:54 <mountie> +1
09:01:00 <jin> +1
09:01:02 <Anders> 0+ This is not related to webcrypto in its current form
09:01:02 <sangrae> +1
09:01:26 <kodonog> hhalpin: 2 things, certificate processing and same origin
09:01:35 <rbarnes> harry is inaudible
09:01:52 <Jackal> Jackal has joined #crypto
09:02:16 <israelh> hhalpin: another thing is CERTs that don't have the same origin.
09:02:32 <virginie> current version of the certificate api is available under http://www.w3.org/2012/webcrypto/wiki/Deliverable_web_certificate_API
09:02:44 <kodonog> sangrae: there are no same origin issues for certificate management
09:02:56 <Anders> vpns email and similar apps also needs a "cert api"
09:03:43 <kodonog> virginie: in the current version of the spec, you are using the same origin policy so there is no problem?
09:03:56 <kodonog> MichaelH: so you've issued a certificate, but you can't use it?
09:04:06 <kodonog> IsraelH: so that doesn't seem that useful?
09:04:42 <kodonog> sangrae: certificate management and certificate use don't have to be put into the same API.
09:05:12 <kodonog> israelh: if you do one specification that deals with one part of the problem without doing the other specification, you never have a solution
09:05:31 <kodonog> sangrae: i have a plan to do the other specification
09:05:47 <rbarnes> typing...
09:06:00 <rbarnes> this discussion was helpful in clarifying things
09:06:13 <rbarnes> i am not convinced that the *current* approach in the document is appropriate
09:06:34 <rbarnes> as israel and michael, etc, pointed out, there are several alternative approaches that have lighter requirements for webcrypto
09:06:38 <rbarnes> <over/>
09:07:06 <rbarnes> focus on coming up with the minimal set of things the browser needs to do
09:07:12 <kodonog> virginie: we should work more on this for future work
09:07:28 <kodonog> virginie: we will revisit this on a regular basis
09:07:50 <rbarnes> to be clear: i am definitely supportive of solving the korean banking use case.  it's just not clear that pushing all the cert stuff into the browser is the answer.
09:08:20 <kodonog> virginie: i have created a section in the wiki for future work.
09:08:30 <danny_> danny_ has joined #crypto
09:08:41 <kodonog> ... Leaders for the various pieces will be responsible for populating the wiki.
09:08:56 <kodonog> MichaelH: what is the usage, one bank, two banks... ?
09:09:50 <kodonog> sangrae: currently 5 CAs in Korea, people have a small but greater than one bank
09:10:18 <virginie> note to partcipants : future wirk will be maintained on our wiki
09:10:20 <virginie> http://www.w3.org/2012/webcrypto/wiki/Main_Page#WG_Future_Work
09:10:53 <rbarnes> no problem!
09:10:58 <kodonog> virginie: we can close the meeting, thanks for scribes, remote participants, local participants...
09:11:07 <rbarnes> being an irc lurker is kind of fun :)
09:11:31 <Zakim> -vgb
09:11:32 <ChristianFuhrhop> ChristianFuhrhop has left #crypto
09:11:32 <Zakim> -nvdbleek
09:11:37 <rbarnes> <clap clap clap/>
09:11:39 <wseltzer> s/Scribenick: hhalpin/Scribenick: hhalpin_/
09:11:42 <rbarnes> ciao everybody
09:11:52 <Zakim> -rbarnes
09:12:04 <virginie> great work to scribes and editors...
09:12:05 <wseltzer> rrsagent, generate minutes
09:12:05 <RRSAgent> I have made the request to generate http://www.w3.org/2013/11/15-crypto-minutes.html wseltzer
09:12:12 <virginie> thanks to participants
09:13:41 <Zakim> -Wuzhou_east
09:13:42 <Zakim> Team_(crypto)07:58Z has ended
09:13:42 <Zakim> Attendees were Wuzhou_east, vgb, rbarnes, nvdbleek
09:15:41 <manu2> manu2 has joined #crypto
09:42:13 <mete> mete has joined #crypto
10:42:53 <nvdbleek> nvdbleek has joined #crypto
11:54:57 <nvdbleek> nvdbleek has joined #crypto
11:56:03 <nvdbleek> nvdbleek has joined #crypto
11:57:57 <nvdbleek> nvdbleek has joined #crypto
11:59:05 <nvdbleek> nvdbleek has joined #crypto
12:00:24 <nvdbleek> nvdbleek has joined #crypto
12:02:17 <nvdbleek> nvdbleek has joined #crypto
12:04:20 <nvdbleek> nvdbleek has joined #crypto
12:05:58 <nvdbleek> nvdbleek has joined #crypto
12:08:09 <nvdbleek> nvdbleek has joined #crypto
12:10:06 <nvdbleek> nvdbleek has joined #crypto
12:11:25 <nvdbleek> nvdbleek has joined #crypto
12:13:27 <nvdbleek> nvdbleek has joined #crypto
12:14:46 <nvdbleek> nvdbleek has joined #crypto
12:16:17 <nvdbleek> nvdbleek has joined #crypto
12:18:17 <nvdbleek> nvdbleek has joined #crypto
12:19:33 <nvdbleek> nvdbleek has joined #crypto
12:20:41 <nvdbleek> nvdbleek has joined #crypto
12:22:22 <nvdbleek> nvdbleek has joined #crypto
12:23:11 <nvdbleek> nvdbleek has joined #crypto
12:25:30 <nvdbleek> nvdbleek has joined #crypto
12:26:35 <nvdbleek> nvdbleek has joined #crypto
12:27:56 <nvdbleek> nvdbleek has joined #crypto
12:30:00 <nvdbleek> nvdbleek has joined #crypto
12:37:04 <nvdbleek> nvdbleek has joined #crypto
12:38:47 <nvdbleek> nvdbleek has joined #crypto
12:41:44 <nvdbleek> nvdbleek has joined #crypto
12:43:06 <nvdbleek> nvdbleek has joined #crypto
12:56:03 <nvdbleek> nvdbleek has joined #crypto
12:56:54 <nvdbleek> nvdbleek has joined #crypto
12:58:24 <nvdbleek> nvdbleek has joined #crypto
13:00:09 <nvdbleek> nvdbleek has joined #crypto
13:01:42 <nvdbleek> nvdbleek has joined #crypto
13:03:45 <nvdbleek> nvdbleek has joined #crypto
13:06:01 <nvdbleek> nvdbleek has joined #crypto
13:07:08 <nvdbleek> nvdbleek has joined #crypto
13:08:10 <nvdbleek> nvdbleek has joined #crypto
13:11:06 <nvdbleek> nvdbleek has joined #crypto
13:12:19 <nvdbleek> nvdbleek has joined #crypto
13:13:26 <nvdbleek> nvdbleek has joined #crypto
13:14:49 <nvdbleek> nvdbleek has joined #crypto
13:15:06 <mountie> mountie has joined #crypto
13:16:47 <nvdbleek> nvdbleek has joined #crypto
13:18:08 <nvdbleek> nvdbleek has joined #crypto
13:54:58 <Zakim> Zakim has left #crypto
14:11:24 <Takahiro> Takahiro has joined #crypto
14:58:36 <ekr> ekr has joined #crypto
15:35:55 <ekr> ekr has joined #crypto
15:36:46 <nkic> nkic has joined #crypto
16:08:50 <tantek> tantek has joined #crypto
16:17:08 <ekr> ekr has joined #crypto
17:54:26 <ekr> ekr has joined #crypto
18:01:59 <tantek> tantek has joined #crypto
18:08:05 <ekr> ekr has joined #crypto
18:16:53 <kotakagi> kotakagi has joined #crypto
19:13:28 <kotakagi_> kotakagi_ has joined #crypto
19:38:59 <kotakagi> kotakagi has joined #crypto
19:46:08 <kotakagi_> kotakagi_ has joined #crypto
20:10:26 <malaclyps> malaclyps has joined #crypto
21:38:37 <ekr> ekr has joined #crypto
22:05:14 <ekr> ekr has joined #crypto
22:11:24 <ekr> ekr has joined #crypto
22:13:29 <ale> ale has joined #crypto
22:34:13 <malaclyps> malaclyps has joined #crypto
22:37:37 <tantek> tantek has joined #crypto
23:34:44 <tantek> tantek has joined #crypto
01:51:12 <JonathanJ> JonathanJ has joined #crypto
03:50:33 <malaclyps> malaclyps has joined #crypto
04:56:49 <tantek> tantek has joined #crypto