Certificate+Discovery+for+Direct+Project+2011-10-24

**Time:** 2:30 PM – 3:30 PM EDT **Dial-in:** 1-408-600-3600 | **Passcode:** 663 504 115
 * Certificate Discovery for Direct Project Call **
 * Date: **10/24/2011

Mike Woodcock, Derrick Evans, Lin Wan, William Ryan, David Tao, Sri Koka, Greg Meyer, Aleena Dhar, Scott Chapin, Robert Dieterle, Tynisha Carter, John Moehrke, Victor Palli, Peter Bachman, Lester Keepper, Shay Paintal
 * Attendance:**


 * Action Items**
 * Action Item – Leads to read their individual sections and make changes.
 * Action Item – Participants to read all sections and make comments/notes on work that needs to be done.
 * Action Item – Ken Pool will rewrite the final the last two sections in less technical terms.


 * Meeting Minutes**

Meeting will be focused on writing sections of the Implementation Guide
 * Action Item – Ken Pool will rewrite the final the last two sections in less technical terms.
 * Peter Bachman – they are unable to parse some certificates as a result of the fact that there are missing extensions (because they do not exist).
 * If there is no CRL and no OCSP, it is still allowed to go through. There is no certification checking.
 * Is this outside of our scope? Our goal is to discover the certificate.
 * Reference but do not determine it here.
 * The group has decided to add a separate section that applies to both DNS and LDAP: It is the responsibility of all clients to validate the certificates and determine acceptability.
 * Bob has put together materials that describe the pros and cons to DNS and LDAP and the reasons for a hybridized approach. This is a work in progress – Bob will find the time to continue to do it.
 * We have a lot of the guide populated, but in an unedited version.
 * Action Item – Leads need to read their individual sections and make changes.
 * Action Item – Participants need to read all sections and make comments/notes on work that needs to be done.
 * John Moehrke has made progress with the reference implementation, including finding SMEs.