Certificate+Discovery+for+Direct+Project+2011-08-15


 * Meeting Date**: 08/15/ 2011
 * Meeting Title:** PD Certificate Discovery for Direct Project SWG Meeting Session 10

Agenda/Objectives:

 * **Topic** || **Presenter** ||= **Time Allotted** ||
 * Direct Project Reference Implementations || Greg/Bob || 10 min ||
 * Strengths and weaknesses in both the DNS and LDAP - Blue Edits || Bob Dieterle || 20 min ||
 * Group Recommendation || Bob Dieterle ||= 30 min ||
 * Work to be performed || Support Team ||= 10 min ||
 * LDAP X.500 References || Ken/Peter || 10 min ||
 * Q&A || Support Team || 10 min ||

Attendees:
__Workgroup Attendees:__ To be updated

__Panelist Attendees:__ Erik Pupo, Jonathan Tadese, Kelly Conlin

**Action Items:**
“Yes with comments” were provided by Brett Peterson and McLain Causey ||
 * **Date** || **Description** || **Owner** || **Status** || **Notes** ||
 * 8/15/2011 || Implementation guidelines for publishing and discovering LDAP services using the DNS SRV record || John Moehrke || OPEN || Refer to Volunteer Recommendation Review Wiki Page ||
 * 8/1/2011 || Develop Recommendation Statement for DNS/ LDAP Hybrid Approach || Bob Dieterle || CLOSED || Refer to Volunteer Recommendation Review Wiki Page ||
 * 7/25/11 || Develop LDAP guidance || Erik, Bob, John, Peter, Les, Ken, Alex, and any other interested SWG members || CLOSED ||  ||
 * 7/18/11 || Gain clarity from ONC regarding universal certificate discoverability || Harmonization Support Team || OPEN || Refer to meeting minutes below ||
 * 7/18/11 || Conduct preliminary environmental scans || All SWG Members || OPEN || Refer to Query for Digital Certificate for Direct Project - Ecosystem Consensus Wiki Page ||
 * 7/18/11 || Gain clarity regarding when Direct Rules of the Road will be finalized || Harmonization Support Team || OPEN || Refer toDirect Project Recommendation Review ||
 * 7/18/11 || Present revisions made to the Use Case to address “No” and “Yes with comments” votes from Committed Members || Use Case Support Leads || CLOSED || “No” votes were provided by Les Keepper and Ernest Grove.

**Review of Volunteer Recommendation Review Page:**

 * **Introduction of Direct Project Reference Implementation led by Greg:**
 * For questions regarding Reference Implementation, visit the[| Direct Project Wiki Support Page].


 * __The Direct Project reference implementations have the capability to support __
 * 1) DNS for public **key** discovery
 * 2) LDAP for public key discovery (RCD -- currently the LDAP implementation supports both public certificates and certificate + private key (pcks12 format).
 * 3) Provide for more than one discovery method with a flexible hierarchy of method selection
 * __The Direct Project reference implementation does NOT currently support __
 * 1)  Write specifications for the SRV record format
 * 2) Write specifications for the Anonymous Bind and query/response schema for Certificate Discovery
 * 3) Update RI code for discovery of the SRV record for a given domain
 * 4)  Update RI code for Discovery of a Direct digital certificate stored in LDAP using an Anonymous Bind and the schema from abov e
 * Review of DNS and LDAP Strengths and Weaknesses:
 * Development of third strength/ weakness to be taken offline for revision; Ken Pool to lead
 * Changes were updated in real-time; updates can be referenced on the Volunteer Recommendation Review Page