Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Time

Item

Who

Notes

5 min.

  • Start the meeting.

  • Call to order.

  • Approve minute

  • Approve agenda

John Wunderlich 

Called to order: 10:03

Quorum reached: Yes

Minutes approved: Yes

2023-02-15 Meeting notes - Draft

0 min.

Open Tasks Review

All

Task report
spacesPEMCP
isMissingRequiredParameterstrue
labelsmeeting-notes

15 min.

Workgroup Charter Update

Christopher Williams

Present, review, and (hopefully) vote on the updated Work Group Charter

  • First paragraph of Background, shows examples of federated models. SSI has very different meanings to different people, and some people do not consider mDL as SSI. A better example would be VCs. The point is that the issuer and the verifier are not the same; that’s covered by “federated”. Remove the parenthetical. Also, “These actions” is not clear as to what actions it refers to; replace with “IAM Activities”

  • Audience section: “Holders that should produce” should be “Providers that produce”

  • Out of scope: where does the “limiting the content” come from? It was a concern that the scope was creeping into the Issuer’s business. We do have something to say about what goes into the mobile credential, so the first sentence is not exactly correct. Suggest “for the purposes of a credential database when generated”? Perhaps “requirements on data collection and use for a mobile credential when issued”? We’re trying to get to the issuance access. Alternatively: “Anything not directly implicated in the provisioning or issuance of the credential is out of scope.”

    • there seems to be some concern about what is a credential at all and what it contains; is what the holder chooses to present its own credential, or is the credential the complete set of issued data, which the holder then chooses what to share out of that credential

  • Heather will make last little cleanups and send to the list with a comment with the fact that attendees of today’s call recommend this for adoption. We will vote on this next week.

30 min.

Draft Report

John Wunderlich

Review of proposed changes to PEMC Early Implementor's Guidance Report Editors Draft 2

5 min.

Other Business


Note that Tom Jones will be presenting this to NIST prior to 3/3 and would like to get any input possible before that meeting.

https://tcwiki.azurewebsites.net/index.php?title=Cybersecurity_Framework_for_Mobile_Credentials

Adjourn


10:48 am PT

...