1. OpenID Foundation Avatar OpenID Foundation
  2. WGs
  3. ekyc-ida

Wiki

Clone wiki

ekyc-ida / Minutes / eKYC-IDA_Meeting_Notes_2020-02-26

View History

Attendees

  • Torsten Lodderstedt
  • Daniel Fett
  • Mark Haine
  • Nat Sakimura
  • Don Thibeau
  • Kosuke Koiwai
  • Dima Postnikov
  • Stuart Low
  • Joseph Heenan
  • Ralph Bragg
  • Nick Cuthbert
  • Marcos Sanz
  • Naohiro Fujie
  • Jan Kelin
  • Alberto Pulido
  • Stéphane Mouy
  • Jorge Oliva
  • Victor Herraiz
  • Brenda Sorenson
  • Bjorn Hjelm

Agenda

  • External orgs/events
  • EC eKYC
  • Other external events or organisations
  • Implementations
  • Implementers Draft
  • Tickets/PRs

External orgs/events

OIDF workshop before Spring IIW Who will be able to represent our Working Group? It is on the 27th hosted by Google at Montainview

EC eKYC

Stéphane provided up date on EC work on KYC. There were 2 reports produced by EU.

  • The landscape is currently extremely fragmented
  • Lack of standardisation of KYC processes
  • second report is suggesting a framework based on two key details, attributes and LOA
  • heavily related to european context and specifically eID programme

This is not the end of the EU process

  • The eIDAS is supposed to be adjusted (probably not radically)
  • Consideration of chaneg to AML directive which may result in making KYC more consistent across Europe
  • What happens next is still being discussed and the timeline is not clear
  • Torsten wants to know how eKYC WG can constribute or influence Digi Fisma - single market and AML Digi connect - sponsot for eIDAS framework both groups are expeccted to feedback to expert group next week eKYC WG could reach out
  • Nat asked whether a statement of support would be good as suggested by Ecic Wagner Stéphane suggested that Nat connect with Digi Fisma and he will share the correct person to speak to

Other external events or organisations

  • Mark updated on chat with discussions with Steinar and mentioned ID4Africa
  • Don expanded that he has been working with the World Bank and this has resulted in standards being pushed alongside loans Don took action to make sure regional conferences are aware of our eKYC work
  • Alberto Pulido - Roderick Boothby is going to IIF in Toronto - workshop on future of banking - maybe he can mention the topic of our WG

Implementations

  • Really important to find implementers
  • Any confirmation about organisations that may implement our draft spec?
  • What about FDX implementations in the US? - Don has an active dialogue
  • If any members become aware of any potential implementations please let the WG know

Implementers Draft

  • View was that v09 would be made into implementers draft
  • Only material question remaining is about the issue relating to place of birth - any opinions?
  • Torsten suggested that specific naming of claims is not core so we should move forward to implementers draft - perhaps having a way of versioning of claim names
  • No objections so Torsten will message the mailing list and we can move forward

Tickets/PRs

Request Syntax #1153 #1094 #1139 #1152 - Daniel

  • We now have a much simpler request syntax
  • Currently in a good position - not too complex
  • Any questions? - none arising
  • Marcos commented on #1094 - dealt with - propose closing
  • We have also created a JSON syntax for checking requests and also improved the json schema for the assertions - removed from spec as a separate file and can be used by implementers

place of birth #1119 #1159

  • Torsten semnt a message to the mailing list - so far only two members responded
  • Please read the post and react On the mailing list in order that Torsten can guage the feeling of the group on this topic
  • Kosule feels he thinks birthplace is better than place of birth but does not need to be done no
  • Alberto said that there may be regional or jurisdictional differences - Torsten will raise a ticket
  • Marcos says he believes there is no need to change this now and no need for delay due to this issue

Time zone #1173

  • Propsal that we should omit ant time zone information in order to be privacy preserving and use UTC only
  • Torsten feels that this is OK but put it in the privacy considerations section instead of making it mandatory

Age verification/expression language #1172

  • How could we define something like "age over 17"
  • Alberto - part of thinking about privacy by providing a new claim
  • in an eSeal there is the possibility for a claim of this nature
  • There are different types of operators - by doing this there can be new claims
  • There was some work on how to present it to users
  • Could be a new spec
  • Mark said he thought it is wider than eKYC
  • Bjorn - there is a problem due to relying party jurisdiction and the different ways age is calculated
  • Torsten suggests spending some time to think about this and then decide whether it is appropriate for this WG. There are eKYC use cases of this nature. Proposal is that we move to implementers draft without resolving this topic.

Updated