20110104 - January 4, 2011, SSPR Technical Meeting

Technical Team

Marvin Addison, Victor Bagley, Marc DeBonis, Daniel Fisher, Karen Herrington, Kim Homer, Mike Hosig, Greg Kroll, Ken McCrery, Andrew Olson, Kevin Rooney, Brenda van Gelder

Agenda

1. Questions/discussion about requirements specification ?
2. Status update from development teams

Meeting Notes

Attendees: Marc DeBonis, Daniel Fisher, Karen Herrington, Mike Hosig, Greg Kroll, Ken McCrery, Andrew Olson, Kevin Rooney

1. Mathew Mathai is the point person for questions regarding OTP2Voice.
2. Discussion about javascript
   1. Kevin indicted that use of javascript is a developer decision and not a requirement.
   2. Is requiring javascript a security concern?
      • Those present concluded that javascript should never be relied on for security. Although it is very common for most users to have javascript on, some will likely have it turned off.
      • Kevin suggested that developers could code assuming javascript is on and that if this changes in the future it should not be too difficult to change that to client/server communications instead.
   3. Is requiring javascript a usability concern?
      • No one present was certain.
      • It was suggested to check with Assistive Technologies for clarification.
3. For CAPTCHA we should be using reCAPTCHA.
4. There was a short discussion about naming conventions. What to use? Several are in favor of using "AccountRecovery" as the prefix, then other suggestions for a suffix included "Data", "Authentication", "Notification", and "AuthenticationMethod".
5. Greg will be contacting team leads to get estimates of work duration and dependencies so a project timeline can be created.