iSHARE Change Management
Other Resources
CAB & Co-Creation Meetings
CAB & Co-Creation Meetings
  • Co-Creation Sessions
  • CAB Meetings
    • 2023-09-06
    • 2023-12-06
    • 2024-03-06
    • 2024-06-05
    • 2024-10-09
    • 2024-12-04
    • 2025-03-05
    • 2025-04-30 (extraordinary CAB)
    • 2025-07-02
    • 2025-09-03
    • 2025-12-03
Powered by GitBook
LogoLogo

  • Cookie Policy

  • Privacy Policy

  • Imprint

  • Contact Us

Copyright © 2024 iSHARE Foundation

On this page
  • Agenda
  • Decisions
Edit on GitLab
  1. CAB Meetings

2024-03-06

This meeting is part of the quarterly CAB meeting schedule.

Last updated 11 months ago

This page concerns the CAB meeting held at March 6, 2024 at 15:00 CET.

Agenda

  1. Welcome + introduce new participants

  2. Update on the implementation of RFCs on the

  3. Advice on the implementation of RFCs

  4. Input/review required:

  5. Advice on newly incoming RFCs:

  6. RFC prioritisation: discuss priority on the

  7. Wrap up and outlook to next quarter

Decisions

A transcription of the meeting is available upon request.

  • Priority is determined to be by the order on the board: the higher the RFC card is on the column, the higher the priority of the RFC.

: will be scheduled for a next deep dive, where iSHARE Foundation will provide a detailed suggestion of the new endpoint definition. They will take into account proper versioning (looking at semver.org for inspiration), minimal mandatory fields and a flat structure.

: input can be provided through the regular channels and the RFC will be scheduled for a deep dive session.

: CAB supports this request and suggests to use the current feature of specifying the Service Provider environment.

: CAB advises to review new OAuth specification proposals regarding JWTs to be implemented in the standard. Rajiv highlights the legal aspects of the current specification (vs standard OAuth) and the upcoming implementation of verifiable credentials as an alternative. The CAB sees this as an opportunity to look at the additional standards/amendments proposed under the main RFC to see if it has better alignment possibility with iSHARE.

: CAB advises to take this up as an RFC.

: CAB advises to take this up as an RFC.

: CAB advises to take this up as an RFC and suggests to use the concept of prevalence and making parts optional to achieve a more simple implementation.

: CAB advises to take this up as an RFC, but to make sure that the actual implementation remains simple and backwards compatible, as the existing policy evidence structure is already comprehensive and gather feedback in a deep dive session.

RFC board
RFC047: Generalisation of the capabilities endpoint
RFC048: Improve change and release management process
Allow service provider to retrieve delegation evidence on which it is mentioned without service consumer's client assertion
Revert to standard OAuth authentication flows
Applicability of SLAs under Adhering parties contract should be applicable only to parties providing services
None-API-consuming-Service Consumers to be onboarded without the PKI certificate (like eIDAS)
Define what can be overwritten and what not in the framework
Allow conditional delegations
RFC board
RFC047: Generalisation of the capabilities endpoint
RFC048: Improve change and release management process
Allow service provider to retrieve delegation evidence on which it is mentioned without service consumer's client assertion
Revert to standard OAuth authentication flows
Applicability of SLAs under Adhering parties contract should be applicable only to parties providing services
No API consuming Service Consumers to be onboarded without the PKI certificate
Define what can be overwritten and what not in the framework
Allow conditional delegations