DIF All hands - 2022 Open Call

# DIF All hands - 2022 Open Call [![hackmd-github-sync-badge](https://hackmd.io/uMfiml4_QfmJFmgSZhmxdw/badge)](https://hackmd.io/uMfiml4_QfmJFmgSZhmxdw) [**Website** ](https://identity.foundation ) | [Mailing list](https://lists.identity.foundation/) | [Old minutes](https://docs.google.com/document/d/1vVSGCxZ_YTluSUnwyUNwV74pd6cjLBL-n2ydht_5NyA/edit#) | [Meeting recordings](https://docs.google.com/spreadsheets/d/1wgccmMvIImx30qVE9GhRKWWv3vmL2ZyUauuKx3IfRmA/edit#gid=2039757024) _For this call, you are encouraged to turn your video on. This is a good way to build rapport given we are a large, disparate group experiencing a lot of churn._ _This document is live-edited DURING each call, and stable/authoritative copies live on our github repo under /agenda.md. Please note that we might not notice a pullrequest in time, but you are free to propose agenda items for future meetings via hackmd._ <details> <summary> Meeting information </summary> * To participate - This is an open call, feel free to join and contirubute * Time: every 4th Wednesday, 5pm CET/ 11am EST / 8am PST. * [Calendar entry](https://calendar.google.com/event?action=TEMPLATE&tmeid=OWtzNWZuanA4bWRnYmF0ZnVxaDR0MnQ2cGVfMjAyMDA5MjFUMTgwMDAwWiBkZWNlbnRyYWxpemVkLmlkZW50aXR5QG0&tmsrc=decentralized.identity%40gmail.com&scp=ALL) * [Zoom room](https://us02web.zoom.us/j/81262437540?pwd=UW5ZZkxxTGZXc1RpbFVXTW5JNkdDUT09), Meeting ID: 812 6243 7540, Password: 212121 * [Meeting recordings](https://docs.google.com/spreadsheets/d/1wgccmMvIImx30qVE9GhRKWWv3vmL2ZyUauuKx3IfRmA/edit#gid=2039757024) </details> <h2 id="meeting-October-12">Meeting - 12 October 2022 - (1100 ET/1700 CET) </h2> ### Agenda ## Welcome and introductions - [Previous all-hands meeting recordings](https://docs.google.com/spreadsheets/d/1wgccmMvIImx30qVE9GhRKWWv3vmL2ZyUauuKx3IfRmA/edit#gid=2039757024) [DIF All-hands Discord](https://discord.gg/MYVTwkNU3T) ##### **DIF Feedback Call**. * These open calls are a space to gather feedback from the community and optimize our strategy. * Held every Wednesday in two alternating timeslots, there's definitely one that fits your timezone! [Check our DIF calendar here](https://bit.ly/dif-calendar) ##### **DIF New Member Orientation Call** * These open calls are for anyone new to DIF. * How to get started, overview of our work and groups, and how to get the most from your DIF membership. * Held every Wednesday in two alternating timeslots [Check our DIF calendar here](https://bit.ly/dif-calendar) ##### Newsletter RSS - The DIF monthly newsletter has an RSS feed. Find it here - [DIF Newsletter RSS](https://feedly.com/i/subscription/feed%2Fhttps%3A%2F%2Fblog.identity.foundation%2Fauthor%2Fnewsletter%2Frss%2F) <h2 id="groups" align="center"> 🛠️ Group Updates </h2> ### [☂️ InterOp WG (cross-community)](https://identity.foundation/interop/) ### * Congratulations and welcome to Daniel Bluhm (Indicio) & Brent Shambaugh as the two new co-chairs of the Interop Group at DIF * Now is a great time to get on-board to discuss interoperability goals and the road to adoption ### [💡 Identifiers & Discovery](https://identity.foundation/working-groups/identifiers-discovery.html) ### Meeting - 27 September 2022 * US mobile driver's license call for comments: https://www.regulations.gov/commenton/DHS-2020-0028-0001 * Discussion on RealID and [ISO 18013-5](https://www.iso.org/standard/69084.html): https://www.iso.org/standard/69084.html * Introduction to mDL technology * Hashes of each data element, bundle is signed * Age over X, selective disclosure is "clunky" but supported * No trust in user hardware, all calculation is done by issuer * Discussion on difference between ISO mDL and W3C VC standards * Competition or coexistence? Both have some support. * mDL written by issuers for issuers, more work needed on user and verifier perspectives. * mDL is not decentralized. * Digital wallets in Europe vs US * Who will isse the wallets? Centrally by the state, or free market with certification? * Universal Resolver is better than ever! We have been making behind-the-scenes stability and capacity improvements. [Read more about this interoperability tool on the DIF Blog here](https://blog.identity.foundation/uni-resolver/) ### [💡 DID Authentication WG](https://identity.foundation/working-groups/authentication.html) ### * This ongoing collaborative work is co-hosted with DIF by the Open Identity Foundation (OIDF) as a work item of the [OpenID Connect WG](https://openid.net/wg/connect/) * Latest * [OpenID for Verifiable presentations ](https://openid.net/specs/openid-4-verifiable-presentations-1_0.html) * [Self-Issued OpenID Provider v2 (latest update Sept 2022) ](https://openid.net/specs/openid-connect-self-issued-v2-1_0.html) ### [🛡️ Claims & Credentials](https://identity.foundation/working-groups/claims-credentials.html) ### * Meeting 11 October 2022 - (1300 ET) Workitem Updates: [Presentation Exchange](https://github.com/decentralized-identity/presentation-exchange/issues) (v2.0) + [Credential Manifest](https://github.com/decentralized-identity/credential-manifest/issues) (1pm ET Thu) - PE has a couple of last things - PR to formalise how to use the subject is issuer property (actively used) - optional property - CM - wallet rendering spec is not optional, as none of its uses were mandatory & its uses are non-normative - WR - RWOT had some tangental topics * Workitem Status: [Data Agreements](https://github.com/decentralized-identity/data-agreement/issues) - Met at Rebooting Web of Trust and was a rebooting topic, expanding the scope - will have an update in 2 days * [Verifier Universal Interface (VUI)] - first meeting as ongoing work item coming soon! * [Read about the VUI iniative on the DIF blog here](https://blog.identity.foundation/vui-donation/) * [Trust Establishment](https://github.com/decentralized-identity/trust-establishment/issues) - examples will be contributed for credential usescases - working on final PRs to get spec to V1 - Daniel B & Sam C are talking to Darrel @TOIP : opertunity for convergance - DID-relative service discovery example PR is coming * [JWT-VC Interoperability Profile](https://github.com/decentralized-identity/jwt-vc-presentation-profile/issues, https://identity.foundation/jwt-vc-presentation-profile/) - calls in the meeting for a sister profile in for issuance -> wallet, will adderss in the next meeting * [Schema Directory](https://github.com/decentralized-identity/schema-directory/issues) - will publish out an example to a DIF schema directory spec page this week. * Dormant and/or "paused" work - (v1; meetings paused) [WACI-DIDComm](https://identity.foundation/waci-didcomm/v1.0) - (v1; meetings paused) [VC-JWT & Friends](https://github.com/decentralized-identity/JWS-Test-Suite/issues) * TPAC W3C DIDWG+VCWG update from Brent - did working group met at TPAC, direction for the next charter, charter is moving forward. End of the month for feedback before going to advisory commity. Able to break ground on a number of large topics, progess in defining scope of each problem, still trying to find concensus on solutions, JSON vs JSON-LD, multiple issuers, multiple subjects etc * Topic of Interest - https://github.com/WebOfTrustInfo/rwot11-the-hague/blob/master/draft-documents/verfiable-credentials-holder-binding.md - https://github.com/w3c/vc-data-model/issues/929 ### [📻 DID Comm](https://identity.foundation/working-groups/did-comm.html) - First Public Review Draft of [ToIP Technology Architecture Specification](https://wiki.trustoverip.org/display/HOME/ToIP+Technical+Architecture+Specification) announced at ToIP Summit 2022 Sept 14 in Dublin (part of Linux Foundation Open Source Summit) - Ongoing work & discussions - WACI - [MLS - Willem](https://messaginglayersecurity.rocks/mls-protocol/draft-ietf-mls-protocol.html#name-application-messages) - Rich Chat - group management - Yasiru - DIDComm on ZMQ - [email as transport](https://github.com/decentralized-identity/didcomm-messaging/blob/main/extensions/email_transport/main.md) - [websockets](https://identity.foundation/didcomm-messaging/spec/#websockets) - nfc (DSR) (not yet published) - What’s the plan for IETF? [IETF Draft - DIDComm3](https://github.com/dhh1128/didcomm3) - [DIDComm v.Next wishlist](https://hackmd.io/Lm6_x4GDQW-q3VuMN2wEvw) * [DIDComm Open User Group: GitHub Link](https://github.com/decentralized-identity/didcomm-usergroup/blob/main/meetings/2022-02-23-transcript.md) * Meets on Discord: [Invite is here](https://discord.gg/Sdw8swxpDJ) * Using [UnSync format, described here](https://hackmd.io/@dhh1128/Sk5_Gb2J9) to engage asynchronously in a set time period (typically 4-12 hours) at regular intervals to keep conversation & work moving. * Discussion of the group writing a DIDComm Guidebook - feedback and contributions welcome! Potentially covering: * What is DIDComm and why would I use it? (super high level) * Why developing a protocol on top of DIDComm is a great idea. * Protocol Design Basics * Protocol Design Best Practices ### [🌱 Wallet Security WG](https://github.com/decentralized-identity/wallet-security/blob/main/agenda.md) * **Meetings are now every two weeks, next meeting 4th Oct** * Update on hardware binding - AnonCred example with Lissi wallet ( potential to extend to W3C credential (JSON) ) * Open Wallet Foundation - Announced at Open Source Summit, Dublin: [Linux Foundation Announces an Intent to Form the OpenWallet Foundation](https://www.linuxfoundation.org/press/linux-foundation-announces-an-intent-to-form-the-openwallet-foundation) ### [📦 Secure Data Storage](https://identity.foundation/working-groups/secure-data-storage.html) * Discussion * [User Controlled Authorization Network](https://github.com/ucan-wg/spec/) (UCAN) model and how it contrasts with decentralized approaches * Value of JWTs? * CACAOs ([Containers for a chain-agnostic Object Capability (OCAP)](https://github.com/ChainAgnostic/CAIPs/blob/master/CAIPs/caip-74.md)) ### [🌱 Applied Crypto WG](https://github.com/decentralized-identity/crypto-wg/blob/main/agenda.md) - Thursday 6 October 2022 - (3pm ET) Work Item status - [bbs signatures](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/bbs_signatures.md) - [JSON Web Proof](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/json_web_proof.md): activity is paused at DIF while we work within IETF on establishing a working group. The next step for that is an [interim birds-of-feather meeting](https://datatracker.ietf.org/wg/jwp/meetings/) scheduled for Wednesday, October 12th. - [revocation_methods_for_verifiable_credentials](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/revocation_methods_for_verifiable_credentials_.md) - we now have a strawman of Andrew's method https://identity.foundation/revocation/non-revocation-token/ - new meeting time 8am PST every Tuesday - would like to bolster more attendance, would another meeting time change help more people attend? - [Spartan ZKP signatures](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/spartan_zkSNARK_signatures.md) ### [✈️ Hospitality & Travel](https://www.notion.so/dif/HOSPITALITY-TRAVEL-SIG-242105321e1747f8bce776bf634a55b3) * Continued discussion around creation of passenger/customer profile for wholistic travel experiences - join the next call to discuss! * added an [SSI Activity Tracker section to the H&T SIG site](https://www.notion.so/dif/HOSPITALITY-TRAVEL-SIG-242105321e1747f8bce776bf634a55b3#88f37833db754637b3142410c90a92ef). Two trackers listed, additions welcome! ### [🏦 Finance & Banking](https://www.notion.so/dif/Meetings-a243fc1d22e2458b87381ef41b9bffb8) - [Meeting 38: Financial Privacy & The U.S. Constitution](https://www.notion.so/dif/Meeting-38-Financial-Privacy-The-U-S-Constitution-0886d5b03a79419baaaecff8e772e016) - Presentation from [Nick Anthony](https://www.linkedin.com/in/nick-anthony-042/). Nick is a policy analyst at the [Cato Institute's Center for Monetary and Financial Alternatives](https://www.cato.org/center-monetary-financial-alternatives). During this meeting, Nick will discuss some of the reasons that financial privacy is so lacking in the United States. Among these reasons, Nick will highlight the Bank Secrecy Act, third-party doctrine, and Right to Financial Privacy Act." - [Meeting 37 - Five Lessons Learned from 3 Years of 'Open Banking'](https://www.notion.so/dif/Meeting-37-Five-Lessons-Learned-from-3-Years-of-Open-Banking-1-4c0aefbbe9ea4bbeba08e9cc39fff735) - In meeting 37 we will host [David O'Neill](https://www.linkedin.com/in/davidon/) from [APImetrics](https://apimetrics.io/). APImetrics has been monitoring Open Banking APIs since the earliest days of UK Open Banking. Monitoring production endpoints and FAPI consent flows provides a lot of insights about how the Open Banking rollout has evolved. David will provide comprehensive insights into the state of the standard, its adoption, and performance. Topics touched on include: - UK Open Banking Adoption different from 'World' - Consequences of Non-Compliance - Banking data is "yours" in UK and Australia - "Synthetic Calls" - expand - Technology Debt (COBOL) - Sandbox Offer - [Meeting 36 - Working Meeting "AML Survey"](https://www.notion.so/Meeting-36-Working-Meeting-AML-Survey-acaeb0b0ef9e44fdadc8fe4f72fedf90) - [Meeting 35 - Decentralized Identifier and the State](https://www.notion.so/Meeting-35-Decentralized-Identifier-and-the-State-4abfe2d2572f4db0b3e33a5103df13b3) - [Meeting 34 - Public Voter Registries](https://www.notion.so/Meeting-34-Public-Voter-Registries-2142584cef8a421aa1f75d040f270987) - [Meeting 33 - Beneficial Ownership](https://www.notion.so/Meeting-33-Beneficial-Ownership-7101029317ff441e84b4fde01703aac2) - [Meeting 30 - Intro New Co-Chair: Lennart Lopin](https://www.notion.so/Meeting-30-Intro-New-Co-Chair-Lennart-Lopin-80f2f4cb52d8496aa11565dca8c20e89) ### 🌏 [APAC/ASEAN Open Call](https://www.notion.so/dif/DIF-Asia-Discussion-Group-85bc823687e745c29ef5084f5e1f5802) * Our APAC/ASEAN Community Call is a collaborative initative between DIF and the [Trust over IP Foundation](https://www.trustoverip.org/) (ToIP). * We invite to you to attend the next meeting Thurs Oct. 27th at 9am CET / 3pm SGT for updates. See [DIF Calendar here for meeting details](https://bit.ly/dif-calendar) * On the agenda: Takeaways from Identity Week Asia and ToIP Summit * Last meeting Sept 22nd: Presentation from Silence Laboratories on their work building a library stack to help enterprises adopt decentralized authentication, signature, and authorization. ### 🌍 [Africa Open Call](https://www.notion.so/dif/DIF-Africa-Discussion-Group-a0309cb4a1d4461085683744d2955973) * Join us on the next call November 3rd* * [ID4Africa announces new Livecast for 28th Sept](https://id4africa.com/livecast-ep34-cina-lawson-business-models-ionethiopia/?utm_source=ID4Africa+Newsletters&utm_campaign=ae07bc7686-2018_Ambassador_Class2_COPY_01&utm_medium=email&utm_term=0_d4a162e8ff-ae07bc7686-178703460) <h2 id="metrics" align="center">🔢 Metrics</h2> **Newsletter**: 5,625 subscribers | 34% opening rate **Twitter**: 5,731 followers | 3.8k impressions | 4.7k profile visits **Website**: 24k unique visitors **Youtube**: 2.2k impressions *In the last 30 days.* <h2 id="join" align="center">🆔 Join DIF!</h2> **If you would like to get involved with DIF's work, please [join us](http://identity.foundation/join) and start contributing.** --- **Can't get enough of DIF?** | follow us on [Twitter](https://twitter.com/decentralizedid) and [LinkedIn](https://www.linkedin.com/company/decentralized-identity-foundation) | join us on [GitHub](https://github.com/decentralized-identity) | subscribe on [YouTube](https://www.youtube.com/channel/UCicZIzvOXOyij0A6jlA7nxQ) | read our [DIF blog](https://blog.identity.foundation/) | read the [archives](https://github.com/decentralized-identity/newsletterarchives) ---- <h2 id="meeting-June-22">Meeting - 22nd June 2022 - (1100 ET/1700 CET) </h2> ### Agenda ## Welcome and introductions - [Previous all-hands meeting recordings](https://docs.google.com/spreadsheets/d/1wgccmMvIImx30qVE9GhRKWWv3vmL2ZyUauuKx3IfRmA/edit#gid=2039757024) - Read June's edition of DIF's Monthly Industry Newsletter [here](https://blog.identity.foundation/dif-monthly-27/) ## 🚀 Foundation News ### DIF Steering Committee Elections The six elected candidates are: * **Sam Curren** (*Indicio Tech*) * **Daniel Buchner** (*Block*) * **Karyl Fowler** (*Transmute*) * **Rouven Heck** (*Consensys Mesh*) * **Markus Sabadello** (*DanubeTech*) * **Kaliya Young** (*Identity Woman*) You can read more about all SC candidates' background and vision for DIF [here](https://identity.foundation/election2022/candidates.html). ### DIF Comms * We currently gathering updates the wider community for our **Monthly Newsletter** * Send in any tips, events, opportunties you have for us [using this form](https://docs.google.com/forms/d/106K_65wkYSiWEEg5haKYJuSbVW2DsXabhv4_LgCDo2o/viewform?edit_requested=true)! * Read June's edition [here for news stories about the SSI community, funding opportunities, events and more](https://blog.identity.foundation/dif-monthly-27/) * **Notifications** * How often (and where?) do you want to hear from us? * Reminders for upcoming meetings and calls (such as this one) <h2 id="groups" align="center"> 🛠️ Group Updates </h2> ### [☂️ InterOp WG (cross-community)](https://identity.foundation/interop/) ### * Andrew Hughes joins to continue a conversation begun at IIW around the [ISO Mobile Driving License](https://docs.google.com/document/d/1-ca1yERbU84zAiAPa3E29t0INJwpkJ4IBZClMJuNoP8/edit) (mDL) standard. * a "wish list" for the next generation of mDL-associated specifications - how they might be more compatible/aligned with the work at DIF and elsewhere. * Discussions around an SSI Roadmap and routes to adoption * Validated ID presented what it means to be[ EBSI conformant](https://ec.europa.eu/digital-building-blocks/wikis/display/EBSI/Become+conformant) and how this is aiding interoperability. * [EBSI Wallet Conformance list](https://ec.europa.eu/digital-building-blocks/wikis/display/EBSI/Conformant+wallets) and[ testing profile](https://ec.europa.eu/digital-building-blocks/wikis/display/EBSIDOC/Wallet+Conformance+Testing+Profile) ### [💡 Identifiers & Discovery](https://identity.foundation/working-groups/identifiers-discovery.html) ### * Discussion about EU Digital Identity Wallet, EBSI/ESSIF, eIDAS 2.0, VCs, ISO mDL, etc. * Christoph Fabianek of MyData presented on Displaying / rendering the content of a DID document. [Recording of session here](https://us02web.zoom.us/rec/play/CRZm2SnNgcFFYSZLMvWWckluuKodvlJlpxo9yUl_YACXQ7mAg3ytAAmEVsvXoCVmIL78xCFglzg-GKLx.P4tyEadqEAzSsYYT?continueMode=true&_x_zm_rtaid=qDW3-n7QTBKpHpP1Oqce8g.1654624550132.50bd339e68cd8d1a51c10556640a7cf9&_x_zm_rhtaid=73) * Presentation of Semantic Overlay Architecture (SOyA), work done together with IDunion * Definition of a data model using a .yml file, then transformation to different representations * Demo of command line tool, and automatically rendered UI * Discussion about JSON-LD, RDF, content-addressing * Use of overlays, SHACL * Discussion about DID document data model, and how it could be modeled/transformed with Semantic Overlay Architecture (SOyA) ### [🛡️ Claims & Credentials](https://identity.foundation/working-groups/claims-credentials.html) ### * Timing Update: Main WG meeting bi-weekly, Tuesdays at 10am PST / 1pm ET / 7pm CET * Announcement of new Work Item - DIF C&C WG - Trust Establishment * Meets weekly on Mondays at 10am PT / 1pm ET / 7pm CET * Github repo [here](https://conference.ewf-usa.com/https://conference.ewf-usa.com/) * Background context on DID Trust Establishment [here](https://hackmd.io/Xn4FAapEThu1fycJ9bY9OA?view) * Workitem Proposal: [Schema Directory](https://github.com/decentralized-identity/claims-credentials/pull/13) - Find more contributors: get in touch! - Prior Art: - [https://w3c-ccg.github.io/traceability-vocab/](https://w3c-ccg.github.io/traceability-vocab/) - [https://github.com/decentralized-identity/template-for-registry-workitems](https://github.com/decentralized-identity/template-for-registry-workitems) * Workitem Accepted: [Trust Establishment specs and protocols](https://github.com/decentralized-identity/claims-credentials/pull/12) * New Workitem: [JWT-VC Interop Profile](https://github.com/decentralized-identity/claims-credentials/pull/11) Kickoff Meeting - Cadence: Once a Month, on 3rd Wednesday ([see DIF public calendar here](https://bit.ly/dif-calendar)) - Cloned ["Profile" template](https://github.com/decentralized-identity/template-for-profile-workitems) and migrated to DIF. * Timing update: VC-JWT & Friends Work Item call: Thursdays 2pm EST * Workitem Proposal: reactivate the Credential Taxonomy item under the name Schema Directory * Lots of interest to get this restarted * Request from companies to have a resource to point to "existing" schema or a single resource for schemas * Have active contributors who want to make additions * Does DIF need a process for registries or living documents? ### [📻 DID Comm](https://identity.foundation/working-groups/did-comm.html) * Vote on Status Change of Spec passed by WG (PR 355) * Welcome to the stage, [DIDComm V2 Spec!](https://identity.foundation/didcomm-messaging/spec/) * Discussion on [adding a 'Max Length' constraint](https://github.com/decentralized-identity/didcomm-messaging/issues/135) without modifying message header and Instead by using the Discover Features Protocol to enable agents to query for and disclose the maximum message length that they are willing to accept. * [DIDComm Open User Group: GitHub Link](https://github.com/decentralized-identity/didcomm-usergroup/blob/main/meetings/2022-02-23-transcript.md) * Meets on Discord: [Invite is here](https://discord.gg/Sdw8swxpDJ) * Using [UnSync format, described here](https://hackmd.io/@dhh1128/Sk5_Gb2J9) to engage asynchronously in a set time period (typically 4-12 hours) at regular intervals to keep conversation & work moving. * Discussion of the group writing a DIDComm Guidebook - feedback and contributions welcome! Potentially covering: * What is DIDComm and why would I use it? (super high level) * Why developing a protocol on top of DIDComm is a great idea. * Protocol Design Basics * Protocol Design Best Practices ### [🔒 Wallet Security WG](https://github.com/decentralized-identity/wallet-security/blob/main/agenda.md) * **Timing Changes**: main biweekly call moves to **weekly** * **Device Binding work item call** is being rolled back into the main WG call * Discussions: * Hardware-binding flow drafts for OpenID Connect for Verifiable Credentials Issuance (OIDC4CI) - new drafts, ongoing discussion and verification flows - [Whitepaper: OpenID for Verifiable Credentials](https://openid.net/wordpress-content/uploads/2022/05/OIDF-Whitepaper_OpenID-for-Verifiable-Credentials_FINAL_2022-05-12.pdf) * Usage of hardware binding in W3C/Anoncreds Credentials with examples: * [W3C output format](https://hackmd.io/vTNt47SMSq2UWk2CnX6XgQ?view) * [AnonCreds output format](https://hackmd.io/BbV7BmnWQOmDu1n`-EZJWg) * Standardization draft for communication between wallet and certifying entity * feedback on the [sequence diagram draft](https://i.imgur.com/IpbGbrz.png) * Hardware-binding ideas for OpenID Connect for Verifiable Credentials Issuance (OIDC4CI) * Questions on FIDO Authenticator for wallet security coming out of IIW34 session * Updates on [Challenge-response Aries RFC Draft](https://github.com/hyperledger/aries-rfcs/pull/729) * Trusted Verifier concepts in lissi wallet ([presented by Sebastian Bickerle](https://lissi-id.medium.com/trust-in-the-digital-space-7762471351cf)) ### [📦 Secure Data Storage](https://identity.foundation/working-groups/secure-data-storage.html) * Discussion * [User Controlled Authorization Network](https://github.com/ucan-wg/spec/) (UCAN) model and how it contrasts with decentralized approaches * Value of JWTs? * CACAOs ([Containers for a chain-agnostic Object Capability (OCAP)](https://github.com/ChainAgnostic/CAIPs/blob/master/CAIPs/caip-74.md)) ### [🌱 Applied Crypto WG](https://github.com/decentralized-identity/crypto-wg/blob/main/agenda.md) * PRs * [#27 - Policy as Code updates](https://github.com/decentralized-identity/crypto-wg/pull/27) - closed as stale * [#8 Provenance logs work item](https://github.com/decentralized-identity/crypto-wg/pull/8) - closed as stale * Work Items * [bbs signatures](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/bbs_signatures.md) - Very active, preparing for presentation to IETF in July. * [JSON Web Proof](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/json_web_proof.md) - active, hope to have something soon at IETF ### [✈️ Hospitality & Travel](https://www.notion.so/dif/HOSPITALITY-TRAVEL-SIG-242105321e1747f8bce776bf634a55b3) * Nicholas Giurietto (ConnectID) presented a frictionless hotel customer journey. [Recording here.](https://us02web.zoom.us/rec/share/X7Nm6GgWxO6CAbeIdzzldGXjoDL31ivO8f_D3HJheslHIPqFghiokHkg6AxbRWsa.kjGiJ1EqMmjm9jzy) * Shout out to DIF member **Indicio** * SITA won a decentralized identity award at EIC in Berlin in May, for its implementation of a verifiable credential safe travel solution in the country of Aruba, [based on tech built by Indicio.]((https://indicio.tech/what-the-eic-decentralized-identity-award-means-for-indicio/) ) ### [🏦 Finance & Banking](https://www.notion.so/dif/Meetings-a243fc1d22e2458b87381ef41b9bffb8) * Paul Dunphy steps down as co-chair: the group would like to thank him for his contributions and hard work. * Lennart Lopin (CTO ByteFederal) is joining the group as new co-chair * Discussion around [introduction of ECASH Act in the US](https://www.popsci.com/technology/us-lawmakers-introduce-ecash-act/), compliance costs and know your customer (KYC) regulations. * Invited speaker Anessa Allen Santos spoke about her legal practice, which is largely dedicated to blockchain and fintech by helping innovative corporate clients navigate the evolving regulatory landscape for securities, commodities, and financial services. ### 🌏 [APAC/ASEAN Open Call](https://www.notion.so/dif/DIF-Asia-Discussion-Group-85bc823687e745c29ef5084f5e1f5802) * Our APAC/ASEAN Community Call is now a colloaborative initative between DIF and ToIP, launched 26th May 2022, kicking off with an IIW34 recap. ([Meeting Recording](https://us02web.zoom.us/rec/share/5FW6hVoZc1kVJiFL4NNCRZg7625h-1UsC1xCY8Mb7cLXQpO2yDW566woLoA5IZA.MUVPrrNr_k3PXxDl)) * We invite to you to attend the next meeting tomorrow June 23 at 9am CET / 3pm SGT. See [DIF Calendar here for details](https://bit.ly/dif-calendar) [**Internet Identity Workshop**](https://internetidentityworkshop.com/) - bi-annual unconference at the Computer History Museum, Mountain View, California. - Dates for IIW35 are *November 15 - 17, 2022* - IIW35 registrations have opened *today!* Click [here](https://www.eventbrite.com/e/internet-identity-workshop-iiwxxxv-35-2022b-tickets-368643531727) - IIW34 book of proceedings is online [here](https://internetidentityworkshop.com/past-workshops/) - **IIW ½ day Special Topic Events - Virtual** * *July 21*: The Business of Self-Sovereign Identity (SSI): Exploring the Commercial Readiness and Application of SSI * *August 9 in Asia*: Identity Across Asia (Anchored in Daytime Asia Time Zones!) * *September (date TBD)*: The Regulatory Landscape of Identity ----- <h2 id="meeting-Feb-2">Meeting - 30th March 2022 - (1100 ET/1700 CET) </h2> ### Agenda 1. **Welcome and introductions** - [all-hands meeting recordings](https://docs.google.com/spreadsheets/d/1wgccmMvIImx30qVE9GhRKWWv3vmL2ZyUauuKx3IfRmA/edit#gid=2039757024) 2. **Groups** | ID | CC | DIDAuth | DIDcomm | SDS | Sidetree | KERI | WalletSec |Crypto| |---|---|---|---|---|---|---|---|---| |**Interop**|**Prod managers**|**H&T SIG**|**Finance SIG**|**APAC/ASEA**|**Africa**| | | | ## 🚀 Foundation News ### DIF Steering Committee Elections * 5 seats opening up on DIF's governing board * Nominations for candidates opens 6th April (in 1 week!) for 30 days * **Any member of DIF can submit a nomination for a candidate and all DIF members (including individuals) are eligible for nomination** * To nominate, please email [nominations@identity.foundation](mailto:nominations@identity.foundation) with the candidate's full name and contact details. * Election to take place end of Q2 2022. ### DIF is Hiring! * Hiring process for a DIF **Community Manager** is ongoing * Candidates may still apply [here](https://github.com/decentralized-identity/org/blob/master/Org%20documents/jobs/CommunityManager.md) ### DIF Comms * We are always gathering updates and tips from across the wider community for our **Monthly Newsletter.** * Send in any tips, events, opportunties you have for us [using this form](https://docs.google.com/forms/d/106K_65wkYSiWEEg5haKYJuSbVW2DsXabhv4_LgCDo2o/viewform?edit_requested=true)! * **Comms Calls** * Don't forget to visit our weekly open call where we review Comms metrics in greater detail * Open to all, including non-members * Have a chat, ask some informal questions etc etc... * **Notifications** * How often (and where?) do you want to hear from us? * Reminders for upcoming meetings and calls (such as this one) ### DIF Org * DIF welcomes new **Program Manager Paul Grehan**! * Any questions or concerns, you can always reach out to us [directly](mailto:membership@identity.foundation). ### DIFCon **DIFCon F2F Virtual (*24th Feb.*) & DIFCon APAC F2F Virtual (*3rd March*)** * Videos of the sessions are being released on the [DIF YouTube channel](https://www.youtube.com/channel/UCicZIzvOXOyij0A6jlA7nxQ/) <h2 id="groups" align="center"> 🛠️ Group Updates </h2> ### [☂️ InterOp WG (cross-community)](https://identity.foundation/interop/) ### * 30th March 2022 - EU Time * Irene Martinez of Gataca will present on [Verifier Universal Interface, protocol stack](https://essif-lab.eu/verifier-universal-interface-by-gataca-espana-s-l/.) * Discussion on the new 'Unsync' meeting format for DIDCom Usergroup happening on Discord. * [Discord invite is here ](https://discord.gg/eNN4Wns6Jb) * [Unsync meeting Format description here](https://hackmd.io/@dhh1128/Sk5_Gb2J9) * [join their Mailing list here](https://lists.identity.foundation/g/didcomm-usergroup) ### [💡 Identifiers & Discovery](https://identity.foundation/working-groups/identifiers-discovery.html) ### Topics covered in March * did:oydid Universal Registrar driver: [decentralized-identity/universal-registrar#53](https://github.com/decentralized-identity/universal-registrar/pull/53) * DID Registration specification: <https://identity.foundation/did-registration/> * DID spec extension error codes for security policies: <https://github.com/decentralized-identity/did-spec-extensions/#extension-errors> * How to move from one DID method to another? - Demonstation by Christoph of `did:oydid` - Discussion of DID document (metadata) properties: `alsoKnownAs`, `equivalentId`, `canonicalId` - Discussion of signing DIDs and DID documents - `alsoKnownAs` is also used by Mastodon when moving accounts: <https://docs.joinmastodon.org/spec/activitypub/> - `did:peer` has the concept of "grafting": <https://identity.foundation/peer-did-method-spec/#grafting> - KERI is designed to move identifiers between different underlying systems ### [🛡️ Claims & Credentials](https://identity.foundation/working-groups/claims-credentials.html) ### 4. C&C Biweekly Time Update: Reason: Chair conflicts. Change from in 4 weeks. (or 3 weeks to be the other week to SDS.) - Tuesdays, 1pm ET - Wednesday, 1pm ET (outside of SDS Implementers call) 5. Workitem Status: PE (2.0) + Credential Manifest (1pm ET Thu) - [Block Implementation of PE](https://github.com/TBD54566975/did-sdk/pull/61) 7. Workitem Data Agreements (8am ET Thu) - Update from Jan 9. Verifier Universal Interface (VUI) tracking - Get in Workitem Proposal to C&C - Find Biweekly Time. 11. Workitem Status (DORMANT): WACI-PEX - [notes](https://hackmd.io/6vK3iMaETna1QGipK5QvbQ) - Maybe un-dormanted. Check out today's meetings. 13. Workitem Status (Done): JWS Test Suite [notes](https://hackmd.io/WtOeBNQfRmye7FrjYjNI3g) - Meeting stills taking place. - Gabe - Block implementation of JWT-VC - Input for more normative JWT Section within the VC 2.0 spec. 15. [VC Protocol discussion. OpenID, CHAPI, etc.](https://lists.w3.org/Archives/Public/public-credentials/2022Mar/thread.html) - Call session @IIW. - Next Generation of OIDF Standards - WG ## Meeting - 14 March 2022 - (1300 ET) 1. Welcome and Introductions 2. [WG Participation Tracking](https://docs.google.com/spreadsheets/d/12hFa574v5PRrKfzIKMgDTjxuU6lvtBhrmLspfKkN4oE/edit#gid=0) 3. DONE-ISH Workitem Status: JWS Test Suite [notes](https://hackmd.io/WtOeBNQfRmye7FrjYjNI3g) - no update 5. DORMANT Workitem Status: WACI-PEX - [notes](https://hackmd.io/6vK3iMaETna1QGipK5QvbQ) - no update 7. Workitem Status: PE (2.0) + Credential Manifest - Jan raise an issue on PE & PR to add guidence to the current field & that it will be expanded, with work from data agreements WI - Clarificaion on the requirments of the use of Presentation Submission as it related to Presentation Def (you need to use it) 9. Workitem Data Agreements - Jan still coordinating - A slot has been assigned but it hasnt been added to calandar + adding auto recording 10. Verifier Universal Interface (VUI) tracking - Martin to update 12. [If time allows] Discuss Credential Taxonomy --> Schema ### [📻 DID Comm](https://identity.foundation/working-groups/did-comm.html) * Discussions in March - PR [352](https://github.com/decentralized-identity/didcomm-messaging/pull/352) - serviceEndpoint as Object - replaces PR [268](https://github.com/decentralized-identity/didcomm-messaging/pull/268) - serviceendpoint as URI or object - PR [348](https://github.com/decentralized-identity/didcomm-messaging/pull/348) - timing related headers - PR [354](https://github.com/decentralized-identity/didcomm-messaging/pull/354) - editorial pass - Book WIP PR - PR 355 - Issue 345 - https://github.com/decentralized-identity/didcomm-messaging/issues/345 - PR [268](https://github.com/decentralized-identity/didcomm-messaging/pull/268) - serviceendpoint as URI or object - DIDComm and Hubs - can we unify? - https://hackmd.io/bAOoSupRT-2p7jwIiLu1fw - https://hackmd.io/Hs7LcHx9TaOnYZq-SnzDfA Announcements - Cardea Interopathon (DIDComm v1) https://cardea.app/ (scroll down past header) - PR [340](https://github.com/decentralized-identity/didcomm-messaging/pull/340) - Role of Protocols - PR [342](https://github.com/decentralized-identity/didcomm-messaging/pull/342) - Clarifies DID Rotation - PR [268](https://github.com/decentralized-identity/didcomm-messaging/pull/268) - serviceendpoint as URI or object - Multiple Keys attached to a DID. * [DIDComm Open User Group: GitHub Link](https://github.com/decentralized-identity/didcomm-usergroup/blob/main/meetings/2022-02-23-transcript.md) * Meets on Discord: [Invite is here](https://discord.gg/Sdw8swxpDJ) * Using [UnSync format, described here](https://hackmd.io/@dhh1128/Sk5_Gb2J9) to engage asynchronously in a set time period (typically 4-12 hours) at regular intervals to keep conversation & work moving. * Discussion of the group writing a DIDComm Guidebook - feedback and contributions welcome! Potentially covering: * What is DIDComm and why would I use it? (super high level) * Why developing a protocol on top of DIDComm is a great idea. * Protocol Design Basics * Protocol Design Best Practices ### [🔒 Wallet Security WG](https://github.com/decentralized-identity/wallet-security/blob/main/agenda.md) * Specify requirements for Wallet Authentication issuance Wallet Authentication VC Scheme Challenge-response Aries RFC Draft Differences to cloud scenario ![](https://i.imgur.com/m8Atrfw.png) - Discussion of above sequence diagram - discussed attestation formats - learn from or use https://w3c.github.io/webauthn/#sctn-defined-attestation-formats ? - next steps: - fix sequence diagramm - standardize credential presentation with challenge response - review device binding lifecycle from last session - discussion on embedding keys or dids of keys into the VC - identify building blocks and match existing components 4. discussion to standardize in Aries RFC - review and discuss the lifecycle (commenting in google docs) - https://docs.google.com/document/d/1iJAB7VRe1P4wEaBOAb-g8Fn4JvyMXpkpEMkK06U1Qh4/edit#heading=h.65alklkg59te - whats (in) the trust registry? - list of multiple wallet issuers and their certification status - is data stored in a (global) trust registry and/or a verifiable data registry? - which verifiable data registry if wallet supports multiple DID methods? - is there a possiblity for a global wallet trust registry? - country-specific wallet trust registry? - trust registry bound to the legal framework? - e.g. Pan Canadian Trust Framework specifies a list of wallets that are eligible and issuers can trust all wallets from this list - separate trust registry in eIDAS etc.. - content - wallet isser and his legal representation - contact information - versions - certification body - certification status/expiration - discussion on embedding keys or dids of keys into the VC - goal to rotate key in "lost phone" case - neccessary for high-security usecases - you need to start again - did document layer adds lots of complexity - migration to new phone scenario that proves the old credential in automatic exchange for a new one contacting the issuer - fear of adding complexity for little benefit - next steps: - Specify requirements for Wallet Authentication issuance - Wallet Authentication VC Scheme - Challenge-response Aries RFC Draft - Differences to cloud scenario? * Discussion and planning for device binding & wallet authentication - [Aries RFC standardization path](https://hackmd.io/j7tSL_QPTPiaPhZh_xLDvA) : - possible combination of both * roadmap to standardize in Aries RFC * OpenID Connect outlook -[ Document shared and presented by Sebastian:](https://hackmd.io/@sbickerle/SyLsYsmZq) - challenges and solutions on device binding presentation as attachments - attachments for Present Proof Protocol 1.0 & 2.0 - discussion requires a full lifecycle/full walkthrough(mobile now, cloud later): - 0. Wallet Authentication scheme is defined - 1. Wallet Authentication VC - 2. Issuers are issuing a device-bound credential - 3. Verifier proofs a device-bound credential from a trustworthy device - later: wallet detects changes and requests a refreshed wallet authentication VC ### [🌱 Applied Crypto WG](https://github.com/decentralized-identity/crypto-wg/blob/main/agenda.md) Work Item status - [bbs signatures](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/bbs_signatures.md) - good progress, starting to automate test vectors, massive amounts of PRs moving forward, lots of progress. - [JSON Web Proof](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/json_web_proof.md) - progressing. currently updating tooling so examples are imported from fixtures (mimicking BBS+) - [Spartan ZKP signatures](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/spartan_zkSNARK_signatures.md) - [Repository](https://github.com/decentralized-identity/spartan_zkSNARK_signatures) - kickoff call next Thursday (same timeslot as regular crypto call, offset by a week) - anticipate multiple work items coming out of this. * [BLS12-381 is moving forward at IETF](https://datatracker.ietf.org/doc/draft-looker-cose-bls-key-representations/) * [New IETF Tooling at DIF is fantastic, check it out](https://github.com/decentralized-identity/template-IETF-bound) ### [✈️ Hospitality & Travel](https://www.notion.so/dif/HOSPITALITY-TRAVEL-SIG-242105321e1747f8bce776bf634a55b3) * Example customer journeys and hospitatlity customer profile elements using SSI ([link to PDF of presentation here](https://s3.us-west-2.amazonaws.com/secure.notion-static.com/dc4216dd-25bd-4f55-bc77-c051b04da17a/2021-03-16_DIF_TandH_SIG_Use_Cases_and_Customer_Journeys-NP-DR-BR-GJ.pdf)) * [Mapping B2B and B2C approaches using SSI for customer journeys](https://s3.us-west-2.amazonaws.com/secure.notion-static.com/3bd5ffd8-675d-41d4-bb8f-dd66d23e76d0/2021-03-18_DIF_TandH_SIG_Use_Cases_and_Customer_Journeys-NP-DR-BR-GJ.pdf) * H&T SIG is now on Discord! [Invite link is here](https://discord.gg/b6xe8jV2BG) ### [🏦 Finance & Banking](https://www.notion.so/dif/Meetings-a243fc1d22e2458b87381ef41b9bffb8) * Nishant Bhajari - Privacy Engineering * Martin Schanzenbach, Fraunhofer AISEC - SSI and re:claimID * [Meeting recording here](https://us02web.zoom.us/rec/play/KBuoz7PNkZK6qfoUidBOXoi6-wSK4h4-77iR_PX6_E5Vg5y5XbZteloMbECyyp0oQaSGjkhzI8OAihjR.RSFljKmPX5UC-OPs?continueMode=true&_x_zm_rtaid=YE6t2F_GRe29J6L2bjy-qQ.1648648371139.dc388814712f2f2f774f7704ac14fe37&_x_zm_rhtaid=622) ### 🌏 [APAC/ASEAN Open Call](https://www.notion.so/dif/DIF-Asia-Discussion-Group-85bc823687e745c29ef5084f5e1f5802) * Post-mortem on DID Conference Korea * Analysis and feedback on DIFCon APAC (Mar 3rd) * Discussion of [Mastercard collaboration with NDID Thailand on cross-border ID](https://identityweek.net/mastercard-announces-collaboration-with-ndid-thailand-on-cross-border-id/) [**Internet Identity Workshop**](https://www.eventbrite.com/e/internet-identity-workshop-iiwxxxiv-34-2022a-tickets-220922293527)\ *April 26 - 28, 2022* - IIW34 returns to their in-person format for this industry-defining bi-annual unconference at the Computer History Museum, Mountain View, California. - Read our [recap of IIW33 from OCtober 2021 here](https://blog.identity.foundation/internet-identity-workshop-33/) to get a sense of the groundbreaking and mind-bending conversations that happen at these events! - [**IIW have kindly offered a 20% discount for DIF members!** Get your discounted ticket here.](https://www.eventbrite.com/e/internet-identity-workshop-iiwxxxiv-34-2022a-tickets-220922293527?discount=DIF_XXXIV_20) ----- <h2 id="meeting-Feb-2">Meeting - 9th March 2022 - (1100 ET/1700 CET) </h2> ### Agenda 1. **Welcome and introductions** - [all-hands meeting recordings](https://docs.google.com/spreadsheets/d/1wgccmMvIImx30qVE9GhRKWWv3vmL2ZyUauuKx3IfRmA/edit#gid=2039757024) 2. **Groups** | ID | CC | DIDAuth | DIDcomm | SDS | Sidetree | KERI | WalletSec |Crypto| |---|---|---|---|---|---|---|---|---| |**Interop**|**Prod managers**|**H&T SIG**|**Finance SIG**|**APAC/ASEA**|**Africa**| | | | ## 🚀 Foundation News ### **DIF is changing...** * **Balazs** is moving on to his next project: we wish him well! * DIF welcomes new **Program Manager Paul Grehan**! * Any questions or concerns, you can always reach out to us [directly](mailto:membership@identity.foundation). ### **DIF is GROWING!** * **2 weeks ago, DIF passed an important milestone: 300 member organizations!🚀** * Welcome to our new members; we look forward to seeing them around the DIF community * Lots of orgs are excited to contribute to and improve upon our work! * If you are not a member, why not? Let us know at [membership@identity.foundation](mailto:membership@identity.foundation) * And that membership number just keeps climbing... ### **DIF is Hiring!** * We are looking for a motivated and engaged **Community Manager** * Work remotely on a full-time basis, supporting important ongoing work across the open-source pre-standards community. * Help organize, represent and care for DIF membership, both prospective and existing, and grow along with the booming digital identity sector and the foundation itself. * See a detailed job description on [LinkedIn here](https://www.linkedin.com/jobs/view/2951779049/) or apply directly by sending an email with a cover letter and résumé to [jobs@identity.foundation](mailto:jobs@identity.foundation) * Feel free to share this job listing if you know just the perfect candidate! * **DIF Comms** * We are gathering updates and tips from across the wider community for our **Monthly Newsletter.** * Send in any tips you have for us [using this form](https://docs.google.com/forms/d/106K_65wkYSiWEEg5haKYJuSbVW2DsXabhv4_LgCDo2o/viewform?edit_requested=true)! * Ships in *one week*! [Sign up now on our website if you haven't already](https://identity.foundation/)! * Remember, it doesn't have to be an update from your own org: can be an opportunity to speak, an upcoming webinar, a best-in-class article on VCs... * [Here's last month's Monthly so you have something to read until then 😉 ](https://blog.identity.foundation/dif-monthly-26/) * **Comms Calls** * Don't forget to visit our weekly open call where we review Comms metrics in greater detail * Have a chat, ask some informal questions etc etc... ### DIFCon **DIFCon F2F Virtual (*24th Feb.*) & DIFCon APAC F2F Virtual (*3rd March*)** * Two online community events with over **650 signups** and **almost 200 attendees**! * Massive thank you to all who contributed, spread the word and attended! * We hosted a program of **34 live sessions, across 14 hours and 4 virtual venues** (not to mention many, many timezones!) * Videos of each of the sessions are making their way to the [DIF YouTube channel](https://www.youtube.com/channel/UCicZIzvOXOyij0A6jlA7nxQ/) this week, so make sure you are subscribed! * We are happy to hear your feedback on the format, content, anything at all! Drop us a mail at [press@identity.foundation](mailto:press@identity.foundation) <h2 id="groups" align="center"> 🛠️ Group Updates </h2> ### [☂️ InterOp WG (cross-community)](https://identity.foundation/interop/) ### * Today's meeting 9th March is cancelled * Next will be 16th of March 2022 - EU Time * Irene Martinez of Gataca will present on [Verifier Universal Interface, protocol stack](https://essif-lab.eu/verifier-universal-interface-by-gataca-espana-s-l/.) * 9th of Feburary 2022 * Bob Blakely shared a reflection of the SAML interop work. * Discussion of history 2007-2014: OSIS interop tracking wiki pages - http://osis.idcommons.net/wiki/Main_Page ### [💡 Identifiers & Discovery](https://identity.foundation/working-groups/identifiers-discovery.html) ### * Work continues on the [Universal Resolver project](https://github.com/decentralized-identity/universal-resolver), and scaling support for https://dev.uniresolver.io/ * Discussion on key rotation and proving control/possession of DIDs * Discussion on EU funding for EIDAS, digital wallets ### [🛡️ Claims & Credentials](https://identity.foundation/working-groups/claims-credentials.html) ### * Workitem : PE (2.0) + Credential Manifest - Review of 2.0 * Workitem: Data Agreements - Not officially started yet. - Now has a GitHub Repo - https://github.com/decentralized-identity/data-agreement - [Calendar Entry for regular meetings ](https://calendar.google.com/event?action=TEMPLATE&tmeid=MjRyNjcyOGhvZWJ2N3N2YnFqMTFqaHFwbTRfMjAyMjAzMTBUMTMwMDAwWiBkZWNlbnRyYWxpemVkLmlkZW50aXR5QG0&tmsrc=decentralized.identity%40gmail.com&scp=ALL)(Thursday 14:00 - 15:00 CET) - 17.3. as first meeting. - Relation to "PE" Purpose - Creation of Issue in PE on extension of Purpose. * Verifier Universal Interface (VUI) tracking - Dicuss Profiles (Martin) - Profiles becoming more and more important in the space. - Profile in Data Agreement !== Profile to restrict the technology stack * Discuss Credential Taxonomy --> Schema * IANA registration for JWAs needed for EIP712 and/or conventional eth sigs (ES256 + Keccak)? * Interop Profile Donation Presentation - summary in one slide: - ![](https://i.imgur.com/Pmplyre.png) * Workitem: JWS Test Suite [notes](https://hackmd.io/WtOeBNQfRmye7FrjYjNI3g) - work has been done for a while. still meeting to discuss up and down stream issues. - currently discussing VC Working group charter issues. - how the non-normative examples can help implmentation - the next 1-3 meeting will be about vc working group charters discussions * Workitem: WACI-PEX - currently taking a small break while some dependencies sort out - some BBS+ implmenations have surfaced issues in the core specs - Finished presenation & have made progress on issuance stack * Workitem Status: PE (2.0) + [Schema Directory](https://github.com/decentralized-identity/schema-directory/) * Workitem Status: Credential Manifest + [Wallet Rendering](https://identity.foundation/wallet-rendering/) - Closed PRs and issues * Approval: Verifier Universal Interface (VUI) tracking (first meeting Thursday) - SF lab regular meeting are being wound down - more official announcment at DIF F:F - Work item PR will be set up aginst the c&c repo by Irene ### [🔓 DID Auth](https://identity.foundation/working-groups/authentication.html) ### * Kyle den Hartog stepping down as WG chair. We would like to thank him for all of his hard work and wish him the best in his new endeavours! ### [📻 DID Comm](https://identity.foundation/working-groups/did-comm.html) * [DIDComm Open User Group: GitHub Link](https://github.com/decentralized-identity/didcomm-usergroup/blob/main/meetings/2022-02-23-transcript.md) * Meets on Discord: [Invite is here](https://discord.gg/Sdw8swxpDJ) * Using [UnSync format, described here](https://hackmd.io/@dhh1128/Sk5_Gb2J9) to engage asynchronously in a set time period (typically 4-12 hours) at regular intervals to keep conversation & work moving. * Discussion of the group writing a DIDComm Guidebook - feedback and contributions welcome! Potentially covering: * What is DIDComm and why would I use it? (super high level) * Why developing a protocol on top of DIDComm is a great idea. * Protocol Design Basics * Protocol Design Best Practices * NIST (National Institute of Standards and Technology) requirements as set out in US federal infosec standards ([NIST compliance explained generally here](https://digitalguardian.com/blog/what-nist-compliance)) and their [implications or potential use for DIDComm ](ttps://github.com/decentralized-identity/didcomm-messaging/issues/213#issuecomment-1032215470) * [Discission of ACK semantics ](https://github.com/decentralized-identity/didcomm-messaging/issues/147) ### [🔒 Wallet Security WG](https://github.com/decentralized-identity/wallet-security/blob/main/agenda.md) * Bernard steps down as group chair; the group and DIF would like to thank him for his great work! * discussion on device binding - Aries RFC standardization path : https://hackmd.io/j7tSL_QPTPiaPhZh_xLDvA - Issuance Option [1a](https://hackmd.io/j7tSL_QPTPiaPhZh_xLDvA) or [1b](https://hackmd.io/@sbickerle/rka12zWe5) - Verification mechanism discussion * Biscussion on wallet authentication - Issuance Option [1, 2 or 3](https://hackmd.io/0vFZNmD7R-2NTJbiQ2e3sA#Wallet-Authentication) - Option 3 renamed to 2b: verification discussion is similar between Option 2a and 2b with separate DIDComm protocol vs decorator - combine device binding 1a & wallet authentication 2b to combined protocol, propose as Aries RFC PR to extend the discussion in the broader community * OpenID Connect outlook? * Next: get insights and views from W3C / non-AnonCreds perspective * Wallet implementers survey: * [results](https://docs.google.com/spreadsheets/d/1ao9DSDhtn0dvOTAFp-Uzs_UlLDzwVnrg9eXm4L5syiY) * [Output PDF ](https://github.com/decentralized-identity/wallet-security/blob/main/contributions/wallet_implementers_survey_results_v1.pdf) * **Trusted Verifier** - UX and security checks performed by the wallet * [concept screens from german project](https://github.com/decentralized-identity/wallet-security/blob/main/images/Trusted_Verifier_Slide.png) * requirement from regulatory viewpoint * similar approaches in existing wallets * similar mechanism for issuers * harmonization possible? ### [🌱 Applied Crypto WG](https://github.com/decentralized-identity/crypto-wg/blob/main/agenda.md) * [BLS12-381 is moving forward at IETF](https://datatracker.ietf.org/doc/draft-looker-cose-bls-key-representations/) * [New IETF Tooling at DIF is fantastic, check it out](https://github.com/decentralized-identity/template-IETF-bound) * [Spartan signatures project is beginning!](https://github.com/decentralized-identity/spartan_zkSNARK_signatures) - **Meeting on Thursday, March 10th 5 * **bbs signatures** - fantastic progress,[ check out the repo](https://github.com/decentralized-identity/bbs-signature) * **JSON Web Proof** * feedback to help prevent replay attacks, incorporated that into the core draft. Now matching examples to the new normative languages. Still waiting for BBS+ ### [🏦 Finance & Banking](https://www.notion.so/dif/Meetings-a243fc1d22e2458b87381ef41b9bffb8) * Next meeting **tomorrow, Thursday, March 10th 5pm CET / 11am ET** * on the agenda: * Discuss the state of the [B&F SIG Knowledge Base](https://www.notion.so/Knowledge-Base-78ccd4e0d1144e3e9ca76b7b1345a0c1) * Potentially welcome a surprise guest * **February 24th 2022** * Invited Speaker: Nishant Bhajara - Author “Data Privacy: A Runbook for Engineers” * [link to recorded session ](https://us02web.zoom.us/rec/play/RH94wK_6sbsgbwiyJKVsZUoGzvsD9LnDegFBmEOOCh-EYDMbjnfqcjbtdfLtkdpQY8yDQZRjeNHOCEo.27ROyCAe5VrWKN1p?continueMode=true&_x_zm_rtaid=qPC6mG6-SNOEzol_6cudRA.1646834528012.9446f325d6b62e4d5de1d89e456bdc21&_x_zm_rhtaid=761) ### [✈️ Hospitality & Travel](https://www.notion.so/dif/HOSPITALITY-TRAVEL-SIG-242105321e1747f8bce776bf634a55b3) * Now on Discord! [Invite link is here](https://discord.gg/b6xe8jV2BG) ### 🌏 [APAC/ASEAN Open Call](https://www.notion.so/dif/DIF-Asia-Discussion-Group-85bc823687e745c29ef5084f5e1f5802) * Celebrating the success of DIFCon APAC Virtual event! * Some great regional engagement and turnout! * Interesting and useful sessions: * Consent Management as VC * Commercializing SSI * NIST and implications for privacy, identity and Internet of Things (IoT) * Overview of Regional Efforts in the decentralized Identity Community * Fireside chat with DIF, ToIP, new DIF partner org Trust Alliance New Zealand and more! [Internet Identity Workshop](https://www.eventbrite.com/e/internet-identity-workshop-iiwxxxiv-34-2022a-tickets-220922293527)\ *April 26 - 28, 2022* - IIW34 returns to their in-person format for this industry-defining bi-annual unfocerence at the Computer History Museum, Mountain View, California. Read our [recap of IIW33 from OCtober 2021 here](https://blog.identity.foundation/internet-identity-workshop-33/) to get a sense of the groundbreaking and mind-bending conversations that happen at these events! [Get your ticket here.](https://www.eventbrite.com/e/internet-identity-workshop-iiwxxxiv-34-2022a-tickets-220922293527) ----- <h2 id="meeting-Feb-2">Meeting - 2nd February 2022 - (1100 ET/1700 CET) </h2> ### Agenda 1. **Welcome and introductions** - [all-hands meeting recordings](https://docs.google.com/spreadsheets/d/1wgccmMvIImx30qVE9GhRKWWv3vmL2ZyUauuKx3IfRmA/edit#gid=2039757024) 2. **Groups** | ID | CC | DIDAuth | DIDcomm | SDS | Sidetree | KERI | WalletSec |Crypto| |---|---|---|---|---|---|---|---|---| |**Interop**|**Prod managers**|**H&T SIG**|**Finance SIG**|**APAC/ASEA**|**Africa**| | | | <h2 id="groups" align="center"> 🛠️ Group Updates </h2> ### [☂️ InterOp WG (cross-community)](https://identity.foundation/interop/) ### * Upcoming: *9th of Feburary 2022 - US Time* * Bob Blakely is coming to share with us a reflection of the SAML interop work. * *2nd Feb 2022* * Dmitri Zagidulin presented his **QR Code part 2**, see agenda 8th of December for context * Group is preparing for real interop at IIW 34 - April 26th-28th * Our perspective on potential interop targets: We believe that it could be possible to have interop testing around JSON-LD ZKP with BBS+. * We believe test suites should be built, how? * What is needed to get to JSON-LD ZKP with BBS+ interop? Where are they bottle necks? What are the key groups that are or will be working on key parts. * Potential interop targets: could it be possible to have interop testing around JSON-LD ZKP with BBS+? * Exchange protocols: does WACI-PEX (designed to bridge between the Aries world and SVIP world) have potential as the exchange protocol? * Prospective Scope * WACIPex * JSON-LD * ZKP with BBS+ * Profile of interoperability, it has been used alot of before to land something acknowledgeble. Profiles are useful to drive interoperability to a flexible spec that can drive things forward. * What other profiles to others have? German community says it is a bit complex question. Issues with BBS+ signatures as of today. * Relevant links: [AIP Interoperability Testing](https://aries-interop.info/) * [AIP profile v1.0](https://github.com/hyperledger/aries-rfcs/tree/main/concepts/0302-aries-interop-profile#aries-interop-profile-version-10) * [AIP profile v2.0:](https://github.com/hyperledger/aries-rfcs/tree/main/concepts/0302-aries-interop-profile#aries-interop-profile-version-20) ### [💡 Identifiers & Discovery](https://identity.foundation/working-groups/identifiers-discovery.html) ### * I&D considers if [DIDs can be considered 'personal data'](https://hackmd.io/krdcNluqSnyv-hFdqpVRXQ) in advance of a group discussion 31st Jan 2022, 1400CET. * Short update on W3C DID Core formal objections * Short introduction to [idp2p](https://github.com/idp2p/idp2p) * Beginning work on DID Authn and Authz DOM APIs as a first contribution to a set of Web platform enhancements ### [🛡️ Claims & Credentials](http://identity.foundation/working-groups/claims-credentials.html) ### * 17th January 2022 - (1300 ET) * [JWS Test Suite](https://hackmd.io/WtOeBNQfRmye7FrjYjNI3g) * WACI-PEX - off this week, swift progress on Issuance extension * PE (2.0) + Credential Manifest * Verifier Universal Interface (VUI) tracking * Discuss Proposed Work Items: * Data Agreement protocol * Split CM & Wallet Rendering * 20th December 2021 * [JWS Test Suite](https://hackmd.io/WtOeBNQfRmye7FrjYjNI3g) - core work done * WACI-PEX * v0.1 has been cut, will be published when [PR](https://github.com/decentralized-identity/waci-presentation-exchange/pull/133) is merged * PE (2.0) + Credential Manifest * work continues on David Chadwick's minimalist [profile](https://github.com/decentralized-identity/presentation-exchange/discussions/269) * [wallet-rendering repo](https://github.com/decentralized-identity/wallet-rendering/pull/1) split out from credential manifest as distinct spec ### [📻 DID Comm](https://identity.foundation/working-groups/did-comm.html) * DIDComm Open User Group on DIF Discord: [join here](https://discord.gg/Sdw8swxpDJ) * PRs * [3 open PRs](https://github.com/decentralized-identity/didcomm-messaging/pulls) * [Closed PR 316 - OOB Fix](https://github.com/decentralized-identity/didcomm-messaging/pull/316) * DIDcomm Users Group Time Poll: http://whenisgood.net/d8dkhgi * new group for those using DIDComm as opposed to spec work. ### [🌱 Applied Crypto WG](https://github.com/decentralized-identity/crypto-wg/blob/main/agenda.md) * [bbs signatures](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/bbs_signatures.md) * work is progressing: a [couple of issues](https://github.com/decentralized-identity/bbs-signature/issues/19) could use more feedback * [CBB Data Encoding](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/cbb_data_encoding.md) & [CBB Crypto Service Protocol](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/cbb_service_protocol.md) * new version of spec is out and new implementation. - ready for working group approved status - [cbb-distributed_zkp_authentication](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/cbb_distributed_zkp_authentication.md) - deployed in the wild, implementations being developed - ready for working group approved status - [cbb_policy_as_code](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/cbb_policy_as_code.md) - PRs are in place. - may turn into verifiable computations with untrusted setups - [cbb-service_protocol](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/cbb_service_protocol.md) - really cool - shifted from simple text to [DISCO](https://www.discocrypto.com/disco.html) (signal, but using strobe protocol instead of SHA2) - [JSON Web Proof](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/json_web_proof.md) - single-use credentials being documented and implemented - optimization of number of cryptographic operations - Merkle-tree based approach in development as well - [revocation_methods_for_verifiable_credentials](https://github.com/decentralized-identity/crypto-wg/blob/main/work_items/revocation_methods_for_verifiable_credentials_.md) - Added an non-cryptographic accumulator schema "ValidityVerifiableCredential" - Can be an interim solution which can be implemented "fast". It sets up on available and tested functions.Needs to be explored in more detail in the next weeks. ### [✈️ Hospitality & Travel](https://www.notion.so/dif/HOSPITALITY-TRAVEL-SIG-242105321e1747f8bce776bf634a55b3) * 13th Jan - Kishore Bhatia, Toby Berger & Shankhar Pilai presented Affinidi's [work in the travel space](https://www.travel.affinidi.com/), with a focus on [CommonCheck](https://www.travel.affinidi.com/commoncheck) and the [Affinidi Wallet](https://academy.affinidi.com/what-is-affinidis-digital-wallet-1c2a52b4d13f). ### [🏦 Finance & Banking](https://www.notion.so/dif/Meetings-a243fc1d22e2458b87381ef41b9bffb8) * 16th Dec - [Presentation from Dan Doney, Securrency](https://us02web.zoom.us/rec/play/jZAF_s1AvRF3mxie1xTehpLoNR7LXXLmYjetV96xFLlOd_Mg5FSbh-J1VQ5hqL-Y4dxB0H4daN2LCxt2.3hhqQgguZFE-FQh1?continueMode=true&_x_zm_rtaid=YTxAOLPVRA-EV1iUXw3IEA.1642612384581.27c0fb845d1280cb8e3183b774d868ba&_x_zm_rhtaid=202) - on regulatory compliance across international jurisdictions ### 🌏 [APAC/ASEAN Open Call](https://www.notion.so/dif/DIF-Asia-Discussion-Group-85bc823687e745c29ef5084f5e1f5802) ### 🌍 [Africa Open Call](https://www.notion.so/dif/DIF-Africa-Discussion-Group-a0309cb4a1d4461085683744d2955973) * **DIF Org updates** * Balazs is reducing his involvment with DIF * -> [DIF is looking for a new Program Manager/Community lead](https://github.com/decentralized-identity/org/blob/master/Org%20documents/jobs/PM.md) * Join our DIF Discord (please use full name as your server name) * Invite link: https://discord.com/invite/F4Qw7h6Sr9 * Only the DIDComm User Group so far * *non-IPR space. The DIF Code of Conduct still applies*. * **DIFCon F2F Virtual** * Our Virtual Event has undegone a minor nametweak to **DIFCon F2F Virtual** * Is still our virtual conference for updates and presentations from all the groups at DIF, as well as the wirder community. * *Feb 24th 2022 7:00 PST / 16:00 CET until 15:00 PST/ 00:00 CET.* * Event is **free** and open to all, not just DIF members * [Eventbrite registration page here](https://www.eventbrite.com/e/difcon-f2f-virtual-3-tickets-162786327287): please share widely! #DIFCon * Short-form registration link: https://bit.ly/difconf2f * **DIFCon APAC F2F Virtual** * We have also announced a follow-up event in APAC/ASEAN timezones: **DIFCon APAC F2F Virtual** on * *3rd March 2022* (one week later after DIFCon) * To continue the conversations from 24th Feb as well as present some region-specific sessions * [Eventbrite registration page here](https://www.eventbrite.com/e/difcon-apac-virtual-f2f-tickets-259695224407): please also share with your network! #DIFConAPAC * **Call for Workshops/Demos** * We are excited to hear your ideas for demos, workshops, panels and presentations for the DIFCon program: [Google form to submit sessions for either (or both!) events is here](https://forms.gle/psU3hjt6L7Qq1tE29) * **📰 DIF Comms** * Now accepting submissions for the February DIF newsletter, submit any updates, grants, events etc. now using [this online form.](https://docs.google.com/forms/d/106K_65wkYSiWEEg5haKYJuSbVW2DsXabhv4_LgCDo2o/) * [IIW34 - April 26 - 28, 2022](https://www.eventbrite.com/e/internet-identity-workshop-iiwxxxiv-34-2022a-tickets-220922293527) - in-person event at Computer History Museum, California --- <h2 id="meeting-Jan-5">Meeting - 5th January 2022 - (1100 ET/1700 CET) </h2> ### Agenda 1. **Welcome and introductions** - [all-hands meeting recordings](https://docs.google.com/spreadsheets/d/1wgccmMvIImx30qVE9GhRKWWv3vmL2ZyUauuKx3IfRmA/edit#gid=2039757024) - **Happy New Year to all! Welcome to 2022** 2. **Groups** | ID | CC | DIDAuth | DIDcomm | SDS | Sidetree | KERI | WalletSec |Crypto| |---|---|---|---|---|---|---|---|---| |**Interop**|**Prod managers**|**H&T SIG**|**Finance SIG**|**APAC/ASEA**|**Africa**| | | | Most groups did not meet in the past 3 weeks 😅 Keep your eyes out for our next issue of our newsletter for WG updates. * **DIF Org updates** * Balazs is reducing his involvment with DIF * -> [DIF is looking for a new Program Manager/Community lead](https://github.com/decentralized-identity/org/blob/master/Org%20documents/jobs/PM.md) * We have launched version 1 of our [**Chairs' Handbook**](https://github.com/decentralized-identity/org/blob/master/chair_guidelines.md) as a reference resource and onboarding tool. Please feel free to comment and suggest useful changes! * Join Discord (please use full name as your server name) * https://discord.com/invite/F4Qw7h6Sr9 * [DIF F2F Virtual event](https://www.eventbrite.com/e/dif-face-to-face-virtual-3-tickets-162786327287) * February 24th * Programme: What does the community want to see? * Format feedback * **📰 DIF Comms** * In December 2021 **5k Twitter followers** and **5k subscribers to our monthly Newsletter**! Read more on our DIF Blog [here](https://blog.identity.foundation/milestones/), and make sure to subscribe/follow if you haven't! . * Weekly open Comms calls (see [DIF Calendar](https://bit.ly/dif-calendar)) restart with renewed focus in 2022 12th January. * Now accepting submissions for the January DIF newsletter, submit any updates, grants, events etc. now using [this online form.](https://docs.google.com/forms/d/106K_65wkYSiWEEg5haKYJuSbVW2DsXabhv4_LgCDo2o/) * [IIW34 - April 26 - 28, 2022](https://www.eventbrite.com/e/internet-identity-workshop-iiwxxxiv-34-2022a-tickets-220922293527) - in-person event at Computer History Museum, California