2024-02-09 - Weekly Update

About this document: Agenda and notes are kept in the same document, a separate copy of the document is maintained for each meeting. Please add agenda points before the meeting. Action items created in previous meeting and all other unresolved action items are kept in the document. Please tick off any completed items.

Meeting link: https://meet.google.com/rsf-cqaq-eyq ordinary starting time at 07:45 UTC / 09:45 CET / 13:15 IST

Attendees

  • @Ain Aaviksoo (meeting facilitator) 🙋️

  • @Benjamin Balder Bach (note keeper) 🙋️

  • @Lal Chandran 🙋️

  • @PSRAMKUMAR 🙋️

  • @Philippe Page

🙋️ = present in meeting

Meeting Notes

Note: meeting was very brief

Agenda

Presenter

Discussion

Agenda

Presenter

Discussion

General update (5 min)

@Ain Aaviksoo

 

Kanban board + Action points from last week

 

 

Update from iGrant about the Consent BB Implementation

 

WP5 has been delivered.

iGrant will focus on developing educational material, aiming to deliver ahead of schedule (by the end of February).

WPs and Deliverables

Ain had a presentation from a group that will be involved in the overall training materials development for GovStack, which iGrant needs to receive further specifications from in order to develop the part of the GovStack training that relates to the Consent BB.

The “Consent Agreement => Data Agreement” switch isn’t fully incorporated and is important for the training materials.

Training:

  • Philippe only has time next week, is on vacation the week after.

Mini-update on state of API compliance testing (2 min)

@Benjamin Balder Bach

Good news: The iGrant solution has been delivered in a dockerized version which runs our compliance tests.

This means that our setup, including mock application, is mature for continued Gherkin scenario delivery and implementation. However, we need more resources to complete this work.

More WG members

 

A letter is open for input. Once our goals are established, it can be used to invite more members to the group.

Offline consent

in preparation for next meeting

Notes from previous meeting:

  • on-demand consent is perhaps less of a “practical” need for Government use-cases, since government usecases often have a legal basis (legitimate interest/obligation etc)

  • Ain notes that it’s the role of the application (not the Consent BB) to produce “on-demand” consent, so the Consent BB supports this scenario, however it does not directly facilitate it.

  • We can think of our specification text with the reader in mind. In this case, we can support readers looking to “plug in” the Consent BB in a data transaction in order to guide their understanding towards best-practice consent design and app architecture.

To summarize this, we believe that it’s possible to include “on-demand” consent by describing how an application can use the Consent BB for this scenario. This can be a section in the specification. [immediately after the meeting, this has been captured as a candidate for the FAQ section]

We’ll continue this discussion in the next meeting to cover other aspects of offline consent that are relevant to our immediate roadmap.

Note from original meeting: We had to postpone this. Note that we’re trying to figure out a terminology here. “On-demand” consent was used to emphasize the risks of this kind of thinking, but “offline consent” will help us capture the broader nature. Everyone is encouraged to think about terminology

Consent delegation

skipped

Review necessary Gherkin scenarios to implement

@Benjamin Balder Bach Skipped

CON-15: Create test configuration for Consent Configuration APIsIn Progress

New Action Items

Action Items from previous meetings

@Ain Aaviksoo consider if the decision to have “external ID” and “external ID type” referencing Individuals is relevant for the Key Desicion Log (if it’s not already there)
@Ain Aaviksoo will mention the newly done process for inviting new WG members in TC, because we need to re-iterate on the goals of the WG in order to invite new members
@Ain Aaviksoo call for a meeting with focus on @Lal Chandran 's research on how the Consent BB spec supports various existing standards and solutions on Identity Management.

 

Decision