Date: 2018-12-07

Time: 14:00-16:00 CEST

Type of meeting: Gotomeeting (https://global.gotomeeting.com/join/704521469)

Participants and absents

Chair

Hans Berg (Unlicensed) as eDelivery Community Leader

Elected members (with voting right)

Kristiansen, Olav Astad <Olav.AstadKristiansen@difi.no>

Risto Collanus (Maventa)

Philip Helger (BRZ Austria)

Bård Langöy (Pagero)

Guests (without voting right)

• Jesper B Larsen (Unlicensed) (during agenda item #2)

Agenda

1. Approval of previous meeting minutes
   1. TICC CMB 2018-10-12 minutes
   2. TICC CMB 2018-10-26 minutes,
   3. TICC CMB 2018-11-09 minutes
   4. TICC CMB 2018-11-23 minutes
   5. TICC work meeting 2018-11-13 minutes
2. Publish an official AP certificate list (with Common Name and AP provider name) to make it easier for service providers to find out which AP has sent a transaction (corner 2) in order to contact them for resolutions.
3. PKI v.3 migration status
4. Annex 4 update
5. PEPPOL Directory: Announcement for mandatory support for SMP's (6 months notice required according to André Hoddevik).
6. Decide on remaining actions on TICC-54
7. EU:NAL (ISO-6523 0130) was missing in the codelist relase v3 (TICC-10, TICC-11)
8. Publish OpenPEPPOL Transport Security Policy (as decided in TICC work meeting 2018-11-13 minutes)
9. Unresolved tasks and tickets in the Action Log

Topics not discussed

1. #8, #9

Information items

1. #2: The publication of a list of all issued certificates is not required from a TICC point of view, since the new PKI V3 certificates contain the name of the company maintaining the Access Point in the "Organization" field of the AP certifcate. If OpenPEPPOL Operating Office nevertheless wants to publish that list, there are no objections from our point of view. Jesper B Larsen (Unlicensed) joined the meeting and he agrees that such a list has no priority as the information can be retrieved directly from the certificate, which is part of the business document exchange as well as it is part of the MDN.
2. #3:
   1. We see issues, because not all AP providers have switched their certificates from PKI v2 to PKI v3 yet.
   2. Not all current versions of Oxalis ensure a reliable document exchange in the PEPPOL eDelivery network and Difi is not providing user assistance or support, causing OO helpdesk to be overloaded with Oxalis related issues.
   3. PEPPOL Authorities are not on top of the situation. They have to step up and take the responsibility to act on non-compliant AccessPoints.
3. #4: TICC CMB to ask MC to be allowed to present the status of the situation in one of the next MC meetings to explain the implications of their request.
4. #5: PEPPOL Directory cannot be made mandatory, as long as it is not part of TIA Annex 4. Until then, SMP integration is only possible on a voluntary basis.
5. #6: TICC-54 was closed, as it has already been decided upon and it was published with Codelist release v3
6. #7: identifier is included in the upcoming v4 release of the codelist
7. Georg is assembling a list of POACC document type and process identifiers missing. This information should go into Codelist release v4 asap.

Decisions

1. Approval of the following meeting minutes
   1. TICC CMB 2018-10-12 minutes
   2. TICC CMB 2018-10-26 minutes,
   3. TICC CMB 2018-11-09 minutes
   4. TICC CMB 2018-11-23 minutes (with minor corrections made during the meeting)
   5. TICC work meeting 2018-11-13 minutes
2. See eDelivery CMB decision log.

Action items

1. see TICC CMB action log.

Attachments