Skip to main content Link Search Menu Expand Document (external link)

The SCITT Community

The SCITT Community, the people behind this website and its efforts, are volunteers passionate about not only the IETF SCITT standards but a variety of supply chain and transparency technologies.

The IETF SCITT Working Group

The IETF Supply Chain Integrity, Transparency, and Trust Working Group is the group of volunteers who formally maintain the SCITT Architecture, the SCITT Reference API, and other draft specifications and finalized standards for the scope of work defined in its current charter.

Getting Involved

The SCITT Community

There are multiple ways to involve yourself in our community:

  • Create issues, request code changes on pull requests, or comment on them in our GitHub repos.
  • Join our groups.io mailing list, give feedback on the email threads of others, or start your very own.
  • Attend our bi-weekly community meetings to discuss a variety of topics, ask questions, and better understand where your interests intersect with the group. We meet online every two weeks at 16:00 UTC and more information can be found in our online iCalendar feed.

Previous Meetings

Below is a list of recording of previous meetings and a description of key themes. You can also visit or bookmark the SCITT Community channel’s playlist for all community meetings to keep current or watch them in order. You can find external presentation slides and recordings on the presentation page.

2024-08-12

On August 12, 2024, invited guest Olle Johansson from the CycloneDX Transparency Exchange API (TEA) project presented on the TEA architecture, open questions in their design as they advance it, their standardization process (via ECMA) for the specification, and its possible relationship and shared ground with SCITT. Community members discussed possible topics to evaluate architectural building blocks and integration of SCITT and TEA instances.

2024-07-29

On July 29, 2024, participants who attended IETF 120 recapped the hackathon, SCITT meeting presentations, related possible work at IETF in the future around digital emblem technology and how to store it with SCITT.

2024-07-01

On July 1, 2024, Jon Geater reviewed his presentation regarding his UN AI for Good Summit workshop around detection and monitoring for deepfakes, C2PA watermaking, and implications for possible large-scale deployment of SCITT Transparency Services to support it.

2024-06-07

On June 17, 2024 Steve Lasker presented a proposal for setting the SCITT Signed Statement Payload to a hash enabling signature verification without having to fetch the entire payload. This is aligns with draft-steele-cose-hash-envelope

2024-06-03

On June 6, 2024, community members welcomed an impromptu visit by Sigstore maintainer Hayden Blauzvern to answer questions about shared ground between Sigstore and SCITT specifications.

2024-04-08

On April 8, 2024, community members reviewed the current state of the CISA RSAA system and whether or not it is “SCITT-friendly” and whether or not that is important.

IETF SCITT Working Group Feedback

If you want to provide feedback or directly contribute to the core SCITT specifications, IETF has general guidance for how to participate and the SCITT work group has a dedicated page about its charter, specifications, mailing lists, Zulip chat, and other ways to engage.

IETF SCITT Meetings

The official IETF meetings and interim meetings are on the IETF Datatracker, and also on the presentations page for convenience.