Attendees

• Mark Haine
• Nat Sakimura
• Torsten Loddersedt
• Alastair Treharne
• Alberto Pulido
• Bjorn Hjelm
• Dima Postnikov
• Joseph Heenan
• Jules
• Kosuke Koiwai
• Marcos Sanz
• Stephane Mouy
• Stuart
• Tony Nadalin
• Naohiro Fujie

Agenda

• External Orgs & Events
• Conformance test
• PRs & Issues

External Orgs & Events

• European Committee

  • Not have received formal confirmation yet
  • 18th June

• FDX workshop

  • Don will have a call later this week

Conformance test

• The purpose is to make sure the software is interoperable to other RPs.
• On applying the test suite to OP's production env, it is required to have more attention about legal and privacy policies. Local or sandbox env is required for production env.
• Most of banks prepare sandbox env, so it is enough to have test suite for sandbox env.
• Torsten wrote test cases on Google Docs, please let Torsten if anyone can help to review it.
• Marcos will help reviewing it.

Security profiles

• It is better to follow existing security profile of FAPI, etc. to handle sensitive information.
• Santandar's Digital Trust Protocol Authorization Code Flow will help.
  • https://gruposantander.github.io/digital-trust-docs/auth_code/dtp-auth-code-00.html
• Continue discussion on #1154
  • https://bitbucket.org/openid/ekyc-ida/issues/1154/mention-complementary-security-standards

PRs & Issues

• PR #32

  • Torsten added new PR regarding to mobile number/MSISDN number.
  • Bjorn will review this.

• PR #33

  • From the point of view on data minimization, the OP should not provide any attributes which are not requested by the RP.
  • Torsten will modify the comment on PR, and Tony will review this.

• #1186

  • About expression language.
  • Tony had offline conversation with Alberto.
  • https://identity.foundation/presentation-exchange/
  • Marcos will ask Roland to write this spec together.