Document ISO/IEC/JTC 1/SC 22/WG 23 N0798

Meeting Minutes #55
ISO/IEC JTC 1/SC 22/WG23
16 July 2018 2000-2200 UTC

Meeting Location :
WebEx






Agenda

1 Opening activities

1.1 Opening Comments

1.2 Introduction of Participants/Roll Call

Erhard

Stephen Michell (convenor)
Aaron Ballman (convening WG 21/SG 12)
Richard Corden (WG 21/SG 12)
Andreas Weis (WG 21/SG 12)
Michael Wong (WG 21/SG 12)
Peter Sommerlad (WG 21/SG 12)
Tullio Vardanega (WG 23)
John McFarlane (WG 21/SG 12)
Clive Pygott (WG 23)
Jorg Brown (WG 21/SG 12)
Federico Kircheis (WG 21/SG 12)

55.1.3 Procedures for this Meeting

55.1.4 Approval of previous Minutes of meeting 54

55.1.5 Review of actions items and resolutions, Action Item and Decision Logs

55.1.6 Approval of Agenda

55.1.7 Future Meeting Schedule

2019





#65

6-8 Nov 2019

Belfast, North Ireland with WG 21


#64

22-23 August 2019

Seoul, Korea with SC 22


#63

TBD June 2019

With WG 21, Cologne, Germany (?)


#62

06/05/19

Teleconference, 2000-2200 UTC


#61

08/04/19

Teleconference, 2000-2200 UTC


#60

20-22 Feb 2019

With WG 21, Kona, HA

#59

21-22/01/19

Phoenix, AZ

2018





#58

8-9/11/2018

San Diego, CA with WG 21


#57

27-28/08/18

Telemeeting, 1800-2200 UTC


#56

16/07/18

Teleconference, 2000-2200 UTC















Liaison Activities

55.2.1 PL22.3/WG5 (Fortran) Gary Klimowicz

55.2.2 WG4 (COBOL)

55.2.3 WG9 (Ada) Erhard Ploedereder

55.2.4 PL22.11/WG14 C Clive Pygott

55.2.5 PL22.16/WG21 (C++) Michael Wong

55.2.6 MISRA C Clive Pygott

55.2.7 MISRA (C++) Clive Pygott

55.2.8 SPARK Joyce Tokar

55.2.9 Other Liaison Activities or National body reports

Java

At this time we have nobody, but are still looking.

AI 55-01 – Stephen - contact Andy Wellings to get contact info for James Hunt (aicas) for real time java.

55.3. Document Review

55.3.1 TR 24772-1 Vulnerabilities, language independent (N0790 or later)

AI 55-02 – Steve - 7.33, formatting, font and typesetting is strange. Also Note: differs in 2 places (formatting)

Footnote in 7.33

Fix cross-references.

55.3.2 TR 24772-2 Ada language specific part, N789

We reviewed N0795. Changes are made to reflect guidance moved to Part 1

55.3.3 TR 24772-3 C language specific part, Document N0787 or later

We accept editorial changes, and agree to add a sentence about undefined behaviour leading to attacks in clause 6.8.1, 6.9.1 and 6.10.1.

AI 55-03 – Clive – For 6.8.1, 6.9.1 and 6.10.1, fix the reference in each sentence and prepare the document for ballot.

55.3.4 TR 24772-4 Python language specific part

55.3.5 TR 24772-8 Fortran

55.3.6 TR 24772-10 C++

We work on N799 and develop a new version with proposed text to 6.8 through 6.13.

AI 55-04 – Stephen – communicate with Gabe SG 12 to ask members to contribute a writeup for 2 vulnerability writeups, from the set of 6.2 to 6.30, not including 6.8, 6.9, 6.10, 6.11, 6.12, 6.13. The ones just mentioned contain some examples.

55.3.7 Spark

55.3.8 Potential TR24772 Guidance on avoiding Programming Vulnerabilities – IS



55.4 Review of Assignment of responsibilities


55.5 Resolutions and Action Items

AI 55-01 – Stephen - contact Andy Wellings to get contact info for James Hunt (aicas) for real time java.

AI 55-02 – Steve - 7.33, formatting, font and typesetting is strange. Also Note: differs in 2 places (formatting).

AI 55-03 – Clive – For 6.8.1, 6.9.1 and 6.10.1, fix the reference in each sentence and prepare the document for ballot.

AI 55-04 – Stephen – communicate with Gabe SG 12 to ask members to contribute a writeup for 2 vulnerability writeups, from the set of 6.2 to 6.30, not including 6.8, 6.9, 6.10, 6.11, 6.12, 6.13.



55.6. Adjournment