Meeting minutes
TD Issue 940
wot-thing-description Issue 940 - Add optional proof section to TDs
McCool: (adds comments)
McCool: LDS might choose to use full URLs for JSON-LD canonical form, which would be problematic for us
Philipp: Can we influence this? So that we can also use their standard?
McCool: Yes and yes :)
Prev minutes
McCool: (goes through the minutes)
approved
Signing
McCool: have to reverse the alias...
… have to figure out how to handle the names
… discussions around TD issue 940
wot-thing-description issue 940 (McCool's latest comments)
McCool: note that there is discussion on a new proposed group on Liked Data Signature
Strategy Issue 262 - Linked Data Signature Charter proposal
McCool: it would take long time to resolve it
… need some signing mechanism
… any opinions?
Philipp: JSON Web Signature heavily used
Issue 166 - Add integrity protection (proof section) to TDs
Philipp: SHA256 AES and ECDSA
McCool: SHA256 is a HASH mechanism. right?
Philipp: yes
Use Case Questionnaire
Issue 168 - Add "Security and Privacy Considerations" to all use cases (or requirements)
McCool: what would be the requirements?
Self-Review Questionnaire: Security and Privacy
McCool: need some brainstorming
… (provides a list of possible points on the GitHub comment)
McCool: let's see the questions on the self-review questionnaire
… (goes through the questions)
Self-Review Questionnaire: Security and Privacy - "2. Questions to Consider"
Philipp: what about OAuth2 topics?
… would it be OK if I create a PR?
McCool: yeah
… OAuth2 is a way to manage security
Philipp: another question on Signature
McCool: we still need to see the proposed Charter, etc.
Kaz: we as the WoT as a whole should think about liaison with that group
McCool: right
[adjourned]