2023-04-12 TSPTF Meeting Notes
Meeting Date & Time
This Task Force meets three out of every four Wednesdays (the fourth Wednesday is the Technology Stack WG plenary meeting). There are two meetings each Wednesday to serve different time zones:
- NA/EU meeting: 08:00-09:00 PT / 15:00-16:00 UTC
- APAC meeting: 18:00-19:00 PT / 01:00-02:00 UTC
See the Calendar of ToIP Meetings for exact meeting dates, times and Zoom links.
Zoom Meeting Recordings
- NA/EU Meeting: https://zoom.us/rec/share/AEQqhwk1Azf2w0v4Q9qOO84pjoJCMmam21xDSkBY5wrC4JFpSVwnaar0biLpvlf5.n8HdrZPmyk25iKcp
- APAC Meeting: https://zoom.us/rec/share/XeGFsHBfITLFnM2MT2MeZ0hYwxaXdKHnmu8QHUQpoBevtBm-IYxHbYR5QQEbg3om.m9YRzzLTZqvIQaQk
Attendees
NA/EU:
- Drummond Reed
- Daniel Hardman
- Sam Smith
- Darrell O'Donnell
- Antti Kettunen
- Christine Martin
- Daniel Bachenheimer
- Judith Fleenor
- Lance Byrd
- mathieu
- Neil Thomson
- Oskar van Deventer
- Rodolfo Miranda
- Steve McCown
- Viky Manaila
- Willem de Kok
APAC:
- Drummond Reed
- Dima Postnikov
- Jo Spencer
- Daniel Bachenheimer
- Judith Fleenor
- Dima Postnikov
- Adam Bradley
Agenda Items and Notes (including all relevant links)
Time | Agenda Item | Lead | Notes |
3 min |
| Leads |
|
2 min | Review of previous action items | Leads |
|
5 mins | Timeline Poll | Sam Curren | Per his action item above, Sam created this Github discussion thread. If we have consensus on the proposed options, then ideally Sam can begin the actual poll ASAP after the meeting. In real time during the meeting, Sam created the poll here. ACTION: ALL TSPTF MEMBERS please complete this TSP Task Force timeline poll — ideally in the next 24 hours so we can review the results at the start of the TSP Workshop tomorrow (Thursday April 13). |
5 mins | Terminology Design Training Workshop | Oskar van Deventer | Reminders:
ACTION: ALL TSPTF MEMBERS please add any other terms to this Github discussion thread (especially fundamental terms) that you would like to suggest we review in depth at the Terminology Design Training Workshop. APAC: Jo Spencer "Have a look at the mental model work - https://essif-lab.github.io/framework/docs/essifLab-pattern-list - @Jim, you might remember that a lot of this came out of the activities we were doing in the Sovrin Guardianship work." |
20 mins | Recap of the 06 April TSP Workshop | All | See the extensive Meeting Notes. We will discuss key thoughts and takeaways from attendees. Daniel Hardman andSam Smith both shared that the biggest takeaway was the focus on the need for the TSP to support appraisability of the trust basis of the parties to the protocol. |
20 mins | Prep for the next TSP Workshop TOMORROW | Drummond Reed | Our second TSP Workshop is the same day/time as the last one: Thursday 13 April 2023 at 1:00-3:00PM PDT / 20:00-22:00 UTC / 22:00-24:00 CEST / 06:00-08:00 AEST. Our goal is to discuss and agree on the agenda. One option is to discuss a consolidate stage proposal just posted by Drummond Reed called the Two-Layer Design Model Proposal. Daniel Hardman was happy to start discussion on the above proposal. Other potential topics:
Neil Thomson suggests we need to look at different types of trust tasks:
Sam Smith suggests discussing what "duplicity-evident computing" means. It is a term that has evolved out of the KERI and ACDC work that is not yet well-established in the security community. This compliments the discussions about authenticity, confidentiality, and privacy — and duplicity-evident computing complements all of them and simplifies attack surfaces. Drummond Reed provided a quick review of the Two-Layer Design Model Proposal and explained why he thought it would be helpful to discuss. Sam Smith would prefer to pick one topic on which we can drive a discussion to closure. The Two-Layer proposal could take the entire two hours. To properly support higher-level trust tasks, we need a set of composability properties. Where should those go? That's quite an in-depth discussion. Sam feels composability is about composing transitive trust, not about composing actions. Sam Curren does believe that there is a need for more common semantics than what would be in a minimal TSP. APAC: Daniel Bachenheimer "NIST digital identity specs is an interesting topic; would like to discuss further with any/all interested but don't want to take this call down a rabbit hole. NIST is dropping the ball on Identity Resolution (establishing uniqueness) and Authoritative Sources weakening IAL levels that is weakening Identity Assurance Levels." He provided this quote from the draft: "It is recommended that Issuing Authorities opt for a smaller rather than for a larger portrait image." Jim StClair Agreed — we have been providing the same feedback to NIST. Jo Spencer In terms of the two-layer proposal, the key is that the combination needs to handle all phases of the lifecycle of a connection and the governance under which the connection is operating. Phases of that lifecycle:
Drummond Reed observed that we need to recognize the relationship of trust task lifecycles at the trust task layer vs. the connection lifecycle at the TSP layer. |
5 mins |
| Leads | Should we take a hiatus for the Internet Identity Workshop #36 next week? There was no decision. Drummond Reed will discuss with the co-leads. |
Decisions
- None.
Action Items
- ACTION: ALL TSPTF MEMBERS please complete this TSP Task Force timeline poll — ideally in the next 24 hours so we can review the results at the start of the TSP Workshop tomorrow (Thursday April 13).
- ACTION: ALL TSPTF MEMBERS please add any other terms to this Github discussion thread (especially fundamental terms) that you would like to suggest we review in depth at the Terminology Design Training Workshop.