--------------------------------------------- PKIX WG (pkix-wg) http://ietf.org/html.charters/pkix-charter.html TUESDAY, March 20, 2007 1740-1840 =========================================== CHAIR: Stephen Kent , Stefan Santesson AGENDA: 1. WG Status and Direction 1.1 Document Status Review (5 min) Stefan Santesson (WG co-chair) 2. PKIX WG Specifications 2.1 Certificate Management Messages over CMS (CMC) (10 min) Jim Schaad (Soaring Hawk Consulting) http://ietf.org/internet-drafts/draft-ietf-pkix-2797-bis-04.txt http://ietf.org/internet-drafts/draft-ietf-pkix-cmc-trans-05.txt http://ietf.org/internet-drafts/draft-ietf-pkix-cmc-compl-03.txt Several changes requested by IESG. Also discussing updating POP due To recent changes in SP 800-56A from NIST CMC (CMC) 2.2 SUbject public key info resolution for ECC (10 min) Tim Polk (Security AD/NIST) http://www.ietf.org/internet-drafts/draft-ietf-pkix-ecc-pkalgs-03.txt About how we can move forward with this issue currently blocking our progress 2.3 Subject Alternative Name for expression of service name (5 min) Stefan Santesson http://www.ietf.org/internet-drafts/draft-ietf-pkix-srvsan-04.txt This document is blocked on internationalization concerns. 3. Related Specifications & Liaison Presentations Time allowing, liaison presentations will be accommodated to ensure the PKIX WG is aware of related specifications currently progressing as individual drafts. 3.1 Internationalized e-mail (5 min) Stefan Santesson http://www.ietf.org/html.charters/eai-charter.html The Email address Internationalization group (eai) work on internationalization of the local part of e-mail addresses. How do we accommodate this in certificates? 3.2 Certificates in CRLs (5 min) Stephen Kent http://www.ietf.org/internet-drafts/draft-santesson-pkix-vccrl-00.txt Result from the recent straw poll and decided future of the document. 3.3 Framework on Key Compromise, Key Loss & Key Rollover (10 min) Stephen Kent on behalf of Denis Pinkas Proposal for a new pkix work item on a guidance document for key rollover situations. 3.4 Domain Certificates in the Session Initiation Protocol (SIP) (10 min) Scott Lawrence http://www.ietf.org/internet-drafts/draft-gurbani-sip-domain-certs-04.txt On certificate format for creating a TLS connection either as a client or a server that binds the name of the SIP domain to the connection.