[OpenID board] December 4, 2014 OpenID Executive Committee Call Minutes

Thu, 11 Dec 2014 09:02:29 -0800 

December 4, 2014 OpenID Executive Committee Call Minutes

Present:
Don Thibeau, Executive Director
Mike Jones
Nat Sakimura
John Bradley
George Fletcher
Adam Dawes

Visitors:
John Ehrig, Global Inventures
Brian Berliner, Symantec


1.      Review of Certification Legal Documents
Mike reported that Microsoft standards lawyers have started reviewing the draft 
legal documents.  They found them currently to be overly heavyweight and to 
impose potentially onerous requirements that would be an impediment to parties 
considering certification.  They will be producing proposed changes to address 
these concerns.


2.      Review of Certification Workflow
We walked through a proposed certification workflow outlining proposed 
responsibilities for the parties involved in certification and registration.  
The same workflow was reviewed on the OIX executive committee call earlier 
today.

Don pointed out that we are trademarking the term "OpenID Connect Conformance 
Test Suite".

Mike pointed out that it's the OIDF's responsibility to verify that the 
certification submission is complete - not the OIX's.  He stated that the 
verification that OIX should do is that a valid representative of the OIDF 
submitted the package for registration.

Adam asked whether we'll eventually relax the membership requirement.  John 
Bradley pointed that there will still likely be payment transaction of some 
kind, which serves as a form of identity verification.  The OIDF could also 
control that the submitter controls the submitting e-mail address.

Mike asked who is going to produce and keep up to date the certification web 
pages showing the logos of all parties who have been certified and a list of 
the conformance profiles they certified to.  Don said that he is working on a 
contract to do that for the OIDF with a third party.

George asked whether it was true that parties seeking certification didn't have 
to have a relationship with the OIX.  Mike responded that that was true because 
we want many parties to certify their OpenID Connect implementations and we 
can't place a burden on them of joining two organizations to obtain 
certification.

Attachment: December 4, 2014 OpenID Executive Committee Call Minutes.docx
Description: December 4, 2014 OpenID Executive Committee Call Minutes.docx

_______________________________________________
board mailing list
bo...@lists.openid.net
http://lists.openid.net/mailman/listinfo/openid-board

Reply via email to