Attendees

Organization	Name
Orange	@Gilles Renoux
Charter Communications
CableLabs
Telefonica	@Alberto Ramos Monaga
Vodafone	@Surajj Jaggernath
Ericsson	@Jan Friman
AT&T	@Pierre Close
T-Mobile US	@Murat Karabulut
KDDI
Slagen
Nokia
China Telecom
ZTE
KPN
GSMA
Centilion
Deutsche Telekom
MTN
China Mobile
Verizon	@Mahesh Chapalamadugu
PlektonLabs
TIM
NTT
China Unicom
Infosys Ltd	@bishnu prasad panda, @balamurugan shanmugam
Spectrum
Chunghwa Telecom
Telecom Argentina
Huawei
xFlow Research
NCSRD	@panagiotis pavlidis, @harilaos koumaras
Infolysis	@Vaios Koumaras

Agenda Proposal

Antitrust Policy
Approval of minutes of last conf. call
Recent Updates & Recap
Discussion
- New APIs Proposals:
  - #256 (Voice One Time Password Call), #288 (Group Management API), #293 (TrustWorthiness Intent API), #298 (ConnectivityGovernance), #299 (Network Contract Lifecycle Management), #300 (Network‑Authenticated Assembly)
- Scope Enhancement:
  - Enhancement of Dedicated Networks API #295
- Out of Agenda: N/A
Closing Issues
- #141 (Energy Footprint Notification), #126 (Facial Recognition), #18 (Receive SMS), #20 (Best Interconnection), #91 (Fixed lines in Device Location APIs), #93 (Line Eligibility for Carrier Billing API), #109 (Support application resource requirements in application profiles), #136 (eSIM Remote Management), #157 (Voice Notification), #160 (Voice Verification Code), #241 (Fraud Hotzone Alert), #63 (IMEI Fraud - reactivate from frozen status), #250 (In Home Device Management API), #267 (Radio signal attenuation API)
Frozen API
- #35 (5G New Calling), #17 (Consent and Measurement), #23 (Carrier Wholesale Pricing), #24 (Steering of Roaming Information), #115 (SIM Historical Information), #121 (User Account Spend Count), #122 (Number Of Cards Under User's ID), #167 (IdentityAndConsentManagement),
Review of Action Points
Decision Points
AoB
Q&A

Approval of minutes of last conf. call

Minutes of last API backlog WG call available here
- DECISION: OK

Antitrust Policy

The project's Antitrust Policy, which you can find linked from the LF and project websites. The policy is important where multiple companies, including potential industry competitors, are participating in meetings. Please review and if you have any questions, please contact your company legal counsel. Members of the LF may contact Andrew Updegrove at the firm Gesmer Updegrove LLP, which provides legal counsel to the LinusFoundation.

Antitrust Policy

New Procedures in API Backlog WG meetings

A number of improvements are under discussion with leadership team of OGW project (Henry), CAMARA Project (Markus), Product Definition WS (Helene) and TSC (Herbert). As of today, the WG adopted agreements are three:

To close the agenda SEVEN DAYS BEFORE the conf. call.
- In case a WG participant wants to include a point in the agenda (e.g., present a new API proposal), this participant shall ensure the corresponding issue is opened in Github by then.
- Exceptional situations will be treated separately.
New schedule of conf. calls **The meetings are to be held by Linux Foundation (Links available at GitHub and Confluence Backlog front pages)
- 2nd Thursday of the month (9-10:30 UTC)
- 4th Thursday of the month (15-16:30 UTC)
Send agenda to TSC mail list, to encourage more TSC member companies to join the call and provide comments when they identify APIs which are of interest for them.
New API proposals are included in backlog table when template PR is created, linking to the pending PR
PR will be merged as soon as ready for TSC, and should be merged before TSC review
API enhancements requires existing group’s validation. TSC is informed accordingly to validate
Link and status in backlog table will be updated accordingly
Issue to track API onboarding will be opened once new API is confirmed in TSC.
New proposal Lifecycle for frozen APIs.

Recent Updates & Recap

Last TSC meeting 2026-02-19 (summary):

Marketing:

Meta-release naming proposal from Outreach Committee: Proposal is to use "Signal" and "Sync". Both are telco native terms, “Signal” initiates and “Sync” aligns, so it fits to the purpose of the meta releases, and it is geographically friendly. The TSC was fine with the name change and did not see the need for a formal vote. The decision has been finalized to make the proposed name change.

Commonalities:

Release Candidate preparation: https://github.com/camaraproject/Commonalities/pull/581&https://lf-camaraproject.atlassian.net/wiki/x/BIDjHg
MCP Enablement Program: https://github.com/camaraproject/Commonalities/issues/587& https://github.com/camaraproject/Commonalities/issues/588
- Dedicated timeslot: proposal bi-weekly Mondays even weeks 15:00 UTC starting from Mar 9, 2026 (alternating with Commonalities meetings) Start of the discussion possible in the issues above

Identity & Consent Management:

ICM Spring26 meta-release status: The Spring26 Release Candidate (r4.1) is now available at https://github.com/camaraproject/IdentityAndConsentManagement/releases/tag/r4.1
- https://github.com/camaraproject/IdentityAndConsentManagement/issues/340 The group previously concluded that CAMARA's approach is not affected by the audience injection vulnerability..
MCP Enablement Program – Phase 0: https://github.com/camaraproject/IdentityAndConsentManagement/issues/347. Volunteers from the ICM group are requested to lead or contribute to the program.
Consent Info API: The v0.2.0-rc.1 release candidate is now available at https://github.com/camaraproject/ConsentInfo/releases/tag/r2.1 A review period was established until the next ICM meeting. If no issues are raised, the pull request for the public release will be initiated.
Consent Management API - Controlled Consent Capture Delegation: Initial API draft is under review; No open blocking issues The WG is encouraged to review the draft and propose any additional features required before starting the formal release process.

Release Management:

Spring26 meta-release (https://lf-camaraproject.atlassian.net/wiki/spaces/CAM/pages/268500993)
- M2 (Feb 19): Commonalities and ICM Release PRs have been reviewed and the releases are available here: ICM Release r4.1, Commonalities tbd this week
- M3 (Feb 23+): 4 of 6 Spring26 APIs under review. Final Release PRs to be prepared now that M2 is reached.
  - Spring 26 participation: SessionInsights #350 (no feedback), Spring26 participation: HighThroughputElasticNetworks #349 (no feedback), Spring26 participation: IoTSIMFraudPrevention #348 (reviewed), Spring26 participation: NetworkInsights #344 (reviewed), Spring26 participation: ClickToDial #343 (reviewed), Spring26 participation: Network Slice Booking #341 (reviewed)
Fall26/Sync26 meta-release (https://lf-camaraproject.atlassian.net/wiki/spaces/CAM/pages/268533761 )
- M0 (Jan 15). Start of API work dependent on: M2 Commonalities and ICM release-candidates: will be released this week and release automation rollout will be starting this week. An (automation) PR “[Bulk] Add release-plan.yaml“ will appear in each API repository.
Release automation
- The roll-out of release-plan.yaml, has been tested with a few APIs and is planned to be rolled-out this week. New release process documentation available accordingly for pre-read
- The release automation workflow is currently in alpha testing (ReleaseTest repo) - first volunteering repositories can be onboarded soon (“beta” or “RC” phase). The onboarding will happen via an automated PR (separate from the roll-out of the release-plan.yaml)

Discussion

Current Issues

Issue #	Company	Summary	Status Update
#259	Heksagon	Voice One Time Password Call The API template is available at #263	INITIAL CONTEXT: The “Voice One Time Password Call” API is used to send short-lived one time passwords (OTP) to a phone number via voice call and validate it afterwards, in order to provide a proof of possession of the phone number. AP1: Update the PR by creating a new entry under `documentation/API-proposals` instead of modifying `documentation/API-proposal-template.md`. AP2: Create an issue with the `API proposal` label and link it to this PR. AP3: Resolve the easyCLA error by clicking the provided link and signing the authorization Sep 25, 2025: Not treated Relation with Voice Verification Code (#233) - Herbert suggest if we can merge this with this issue. Heksagon: Regarding your suggestion to merge our issue proposal with #233, we have checked and it looks like that their use case works only for "IMS based audio codes" as explained in their API description which is not the case for our API. So we don't think that merging the two issues would be a good idea. If there is any further discussion needed on that, we can have a call to evaluate it. Oct 10, 2025, Oct 23, 2025, Nov 13, 2025,Nov 27, 2025, Jan 8, 2026: Not treated Dec 11, 2025: Resolve the PR comments and upload the PowerPoint presentation - Not treated Jan 22, 2026, Feb 12, 2026: Not treated MEETING UPDATE: Feb 26, 2026: Not treated
#288	T-Mobile US	Group Management API The API template is available at #289	INITIAL CONTEXT: The Group Management API enables API Consumers to create and manage named groups of pre-defined entities (e.g. devices or areas). It supports batch membership operations and event-driven notifications, making it ideal for Service APIs (e.g., Geofencing) that need to manage and track sets of entities, and be informed about changes to group member states. Related Issue: Standardize Group Management for CAMARA Sub-Projects Jan 8, 2026: Not treated Jan 22, 2026: @Murat Karabulut Will be discussed in commonalities first. Feb 12, 2026: Not treated MEETING UPDATE: Feb 26, 2026: @Murat Karabulut: Still open expected to be discussed in the next few weeks on Commonalities group.
#293	NCSRD & Infolysis	Trust Worthiness Intent API The API template is available at #294	INITIAL CONTEXT: TWIA is an intent-based API that lets an app submit high-level trust requirements (Security, Privacy, Reliability, Resilience, Safety) in natural language and get back per-category scores plus an overall trustworthiness level, without dealing with low-level configuration. Jan 8, 2026, Jan 22, 2026: Not treated Feb 12, 2026: The owner presented the API. Discussion: @Eric Murray: Whether “assurance tiers” (higher reliability/security/privacy) are just a pricing negotiation, and asks what concrete input from the API consumer would make the provider actually change how the service is delivered (e.g., infrastructure/operations) to meet that higher tier. Harilaos: the current “trustworthiness” score is effectively tied to specific user profiling; it’s not priced that way yet, but profiling could drive tiered pricing (validated commercially with a Greek mobile operator), potentially requiring API extensions to support negotiation of different profiling/charging levels. @Jan Friman: Ask for a concrete example of a service that would use this kind of profiling (e.g., connectivity or positioning), and whether it’s meant to apply to any service or only to specific service categories. Harilaos: like VR/XR as the concrete example: a “highly trustworthy” XR app would justify different operational treatment (e.g., stricter service provisioning controls, core-network prioritization, and differentiated access/assurance mechanisms), etc. AP1: Refine the PR: 1) Make the proposal more telco operator capability to differentiate it from AI-trust scoring, which does not require the telco. 2) Standardize the normative definition of 0-1 score to make multi-operator interoperability more realistic. 3) Focus only on POST/intents for now, and leave the subscriptions part for a future version. 4) Given the risk involved in entering free text (personally identifiable information/confidential data), apply protective measures in the proposal. MEETING UPDATE: Feb 26, 2026: AP: @Alberto Ramos Monaga and API proposal owner - get some feedback from Backlog WG and review the telco operator capability scope
#298	`Infosys`	Enterprise Connectivity Governance API - ConnectivityGovernance The API template is not available yet	INITIAL CONTEXT: The proposed Enterprise Connectivity Governance API enables telcos to enforce enterprise network policies at the operator network level (e.g., gateway/edge/core) across MPLS, SD-WAN and mobile networks, so enterprises can centrally control or restrict access to services/app categories (e.g., streaming sites) and optimize usage for compliance scenarios (including BYOD) without installing software on end-user devices. Feb 12, 2026: Not treated MEETING UPDATE: Scope is still unclear: it still looks like a persistent Operate/provisioning API, not clearly a CAMARA Service API; we need a clear definition (persistent CRUD vs request-time intent). Interoperability is not defined enough: no clear MVP target resource and no strict portable policy model yet (categories/semantics/fallbacks), with fragmentation risk from optional app catalogues. Author clarified the architecture concept (CAMARA intent + TMF/ODA realization), but the proposal is still not mature for alignment because the key scope and interoperability gaps remain open. Feb 26, 2026: AP1: Create a pull request with the API proposal template and the supporting documentation. AP2: Review the https://lf-camaraproject.atlassian.net/wiki/spaces/CAM/pages/77922436 subproject to see if there’re any overlap
#299	`Infosys`	Network Contract Lifecycle Management The API template is not available yet	INITIAL CONTEXT: It aims to be an operator-agnostic interface for companies to manage long-term network SLA contracts throughout their lifecycle: defining metrics (bandwidth, latency, availability, error thresholds), monitoring compliance, notifying breaches (webhook/subscriptions), and managing changes (activation, amendments, closure). MEETING UPDATE: Key scope and boundary gaps remain unresolved: the breach-notification use case still looks close to assurance/monitoring, and it is still unclear whether N-CLM only consumes external telemetry (e.g., CQM) or also defines breach evaluation logic. Further clarification is needed before alignment on: binding to a specific CAMARA service instance, normative SLA/metric/breach semantics for portability, and the explicit boundary/dependency with CQM (what CQM provides vs what N-CLM adds). Feb 26, 2026: Not treated
#300	`Infosys`	Network‑Authenticated Assembly The API template is not available yet	INITIAL CONTEXT: Verifies if a defined group of devices has been physically co-present within a given zone and recent time window, returning a simple verdict (co_present/partial/not_co_present) and optionally a privacy-preserving attestation so workflows can trust presence without revealing exact locations. MEETING UPDATE: The main concern remains unresolved: the core capability still appears to be “presence in an area within a recent time window,” which overlaps strongly with Device Location Verification; the proposed delta looks mainly like batching + server-side aggregation (k-of-n group verdict), which may fit better as an enhancement in the Device Location subproject rather than a new API family. Further clarification is needed before alignment on: device eligibility/interoperability (whether members are limited to operator-addressable devices vs tags/beacons/carts/etc.) and whether “continuous checks” implies a subscription/lifecycle model, which would need alignment with existing CAMARA subscription patterns (e.g., Geofencing Subscriptions). Feb 26, 2026: Not treated

Scope enhancements

Enhancement of Dedicated Networks API #295: Dedicated Networks proposes an optional “Areas API” (Issue #86 / PR #87) to help consumers find/select eligible areas. Early signals suggest the same concept may also be needed in QoS Booking, so we risk duplicating / diverging semantics across CQM APIs. The group needs guidance on whether this should be treated as:

DN-only optional API enhancement (new API within the Dedicated Networks family), or
a shared CQM cross-API building block that can be reused by multiple CQM APIs (at minimum DN + QoS Booking), to prevent duplication.
- Decision: The decision must be agreed upon by the group before being added to the backlog - (no new updates)

Out Of Agenda

N/A

Closing Issues

Issue #

2026-02-26 API Backlog Minutes