24 February 2024 (NA/EU)

🎥 1'33": Eric announced a joint collaboration agreement with the Decentralized Identity Foundation and Trust over IP Foundation to further the work of the group under a larger standards development organization.

Kim Hamilton Duffy introduced DIF, a Linux Foundation project focused on decentralized identity technology, structured collaboration, and technical specifications. DIFF operates under the W3C patent policy.

Kim explained that Trust over IP is a peer organization to DIF, also under the Linux Foundation, and they have a history of successful joint participation in working groups, such as the DID Methods Working Group.

Kim introduced the joint participation model, allowing members of Trust over IP and DIF to participate in the Creator Assertions Working Group without additional fees, promoting open collaboration and reducing duplicate efforts.

Further logistical details including new calendar invitations, Slack, and IP agreements will be sent by e-mail to existing members within the next few days.

Relevant documents:

🎥 16'19": Eric proposed switching to an every-other-week meeting cadence with both time zones on the same week, starting from 10 March. The group agreed to this proposal.

Meeting times will be based on US Pacific time as they are now:

🎥 17'30": Action items from 10 February NA/EU:

Action items from 10 February APAC:

🎥 18'16": Reviewed PR #211: ICA validation section.

ACTION: Eric to revise PR to include table of status codes from this section and to finalize how to reference specific verified identity entries.

🎥 25'22": Discuss proposed withdrawal of PR #210: Introduce new section, “C2PA Manifest validation prerequisites”. After discussion in last meeting, I believe this PR is no longer necessary.

ACTION (✅): Eric to close this PR without merging.

🎥 18'16": Eric, Richard, and Scott recapped a recent conversation with Richard Kroon (EIDR), Will Kreth (HAND Identity), and Scott Perry (Digital Governance Institute) on how to incorporate media industry identifiers into C2PA ecosystem via CAWG.

The current working theory is that the existing X.509 flavor of the CAWG identity assertion can be used by industry associations to represent their attestations of media identifiers.

We agreed to form a subgroup to determine the correct placement of these identifiers within the CAWG metadata assertion, ensuring proper representation and standardization.

Andy highlighted the complexity of media identifiers, mentioning various regional identifiers and the need for a flexible system to accommodate different sources and types of identifiers.

Richard proposed that the CAWG should not develop an exhaustive list of identifiers but instead require that the identifier have a URN namespace, offloading the verification to the IETF.

ACTION (✅): Eric to organize media identifiers subgroup meeting. Interested parties, please contact Eric (scouten@adobe.com).

🎥 38'21": Scott Perry led a recap of a discussion held recently on stating levels of assurance in identity claims aggregation’s verifiedIdentities list.

Scott emphasized the importance of incorporating levels of assurance into identity assertions to provide additional context and trustworthiness for the relying party. Scott mentioned existing standards like ISO, NIST, and eIDAS 2.0, which define levels of assurance and could be referenced in the identity assertions.

The group discussed the role of the identity claims aggregator in assigning levels of assurance based on the gathered identity claims, considering the possibility of a scoring mechanism to represent the overall assurance level. David and Daniel raised concerns about the variability in assurance levels and the need for clear definitions and validation mechanisms to ensure the reliability of the asserted levels of assurance.

ACTION: Eric and Scott to further explore the representation of levels of assurance in identity assertions and the potential for a scoring mechanism. They will continue to discuss and refine this topic in future meetings.