IETF Logo Mail Archive

Re: [mile] revising the charter text

Takeshi Takahashi <tt2@rc5.so-net.ne.jp> Thu, 20 September 2018 03:49 UTC

Return-Path: <tt2@rc5.so-net.ne.jp>
X-Original-To: mile@ietfa.amsl.com
Delivered-To: mile@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9399D12872C for <mile@ietfa.amsl.com>; Wed, 19 Sep 2018 20:49:50 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=rc5.so-net.ne.jp
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id cg0KivvIE7Fs for <mile@ietfa.amsl.com>; Wed, 19 Sep 2018 20:49:47 -0700 (PDT)
Received: from ms-mxout02.so-net.ne.jp (ms-somxout02.so-net.ne.jp [202.238.84.152]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 80031130DF3 for <mile@ietf.org>; Wed, 19 Sep 2018 20:49:47 -0700 (PDT)
Received: from mail-qt0-f170.google.com ([209.85.216.170]) by ms-mxout02.so-net.ne.jp with ESMTPA id 2pyKge78AtAeq2pyLg6v75; Thu, 20 Sep 2018 12:49:46 +0900
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=rc5.so-net.ne.jp; s=sn2018; t=1537415386; bh=B+/rxFA5xFU8/bpeWKFWs8S5y3nCR3ME0/1RPGJ/NqM=; h=In-Reply-To:References:From:Date:Subject:To; b=VDAs/Bgi7wun3S/9H0cr4xkRse8HWmeBeFOt9P1adxKcquXSFCDzA6rP/Vd85+v2b 38AArhiIES7rc0q7uhfADhBwBzSvBAIT5mNafsRfZbYCuVgLK6jM061bSf1UOZbEJY BeZL50XEoLQwtGB1yRyu8yN8oQi29vgURo2VS2DJdPkGrBXvfnif8c9EYlW/xZZdzy tCGj+4fvnsixt5GfHqXdOBrQ7gqOgp3ro8KjwvPYaCRFDO0JmQr+gQLPwJxyDkgDCv l5kWhJn2ESnKuofz0iaSfUMQXmtZ3jyvuaOzPOnIChhLY8ZfeRJYNyVpssZLoUdhSS aCkNeKzZNFXQg==
Received: by mail-qt0-f170.google.com with SMTP id n6-v6so7265826qtl.4 for <mile@ietf.org>; Wed, 19 Sep 2018 20:49:45 -0700 (PDT)
X-Gm-Message-State: APzg51DawLIZxXkP9YylicZonuShKjMY1p28tpnKCiqbK1Ow5LoZU9l2 HJBIbOfx+d5XBAo42VIlhnbFN6YfDVAytu1PkA==
X-Google-Smtp-Source: ANB0VdY5likHO+iKcBwDI5LuOfjW7EnZ/iRTWuwb7NinB38+Y+MVlr/XomkauouGvW7iRl1smdEEvFYsbko+tVV65jU=
X-Received: by 2002:ac8:19d0:: with SMTP id s16-v6mr27406199qtk.215.1537415384217; Wed, 19 Sep 2018 20:49:44 -0700 (PDT)
MIME-Version: 1.0
Received: by 2002:ac8:faa:0:0:0:0:0 with HTTP; Wed, 19 Sep 2018 20:49:03 -0700 (PDT)
In-Reply-To: <098f01d444d7$a4379330$eca6b990$@nict.go.jp>
References: <000001d43517$3154fbc0$93fef340$@nict.go.jp> <CAHbuEH7d36ibkRXR0KuPJMwnBiRajSt2OAxiiLn44HzW8aQTMA@mail.gmail.com> <70C94385-85B4-421B-AD7C-6FDF57197B3F@gmail.com> <509FB392-A135-45EA-A4E8-969EB28211EC@cisco.com> <DM5PR0901MB2199314BCDD7E4A9BB133112F03E0@DM5PR0901MB2199.namprd09.prod.outlook.com> <CAC0wChGXpzHeArsLALpiJF18eZ_s463cc2H8YOHAfnBJLhRnMA@mail.gmail.com> <4B73C53A-A0FE-4CC8-A412-9953370ABA3A@cisco.com> <359EC4B99E040048A7131E0F4E113AFC014C431AA4@marathon> <CAC0wChFkXxW_FMu7yJDUamhtHma34wB2hgfftj2op__yCec13A@mail.gmail.com> <0c9b01d44047$6c032c70$44098550$@nict.go.jp> <61C5FEEA-B6AB-46F4-A9C9-A2F184760426@gmail.com> <098f01d444d7$a4379330$eca6b990$@nict.go.jp>
From: Takeshi Takahashi <tt2@rc5.so-net.ne.jp>
Date: Thu, 20 Sep 2018 12:49:03 +0900
X-Gmail-Original-Message-ID: <CAMA4c9UogCg6Av0L1BCTqEqF5GNH3u5WFdpj7hCgvt_6Rf9jZg@mail.gmail.com>
Message-ID: <CAMA4c9UogCg6Av0L1BCTqEqF5GNH3u5WFdpj7hCgvt_6Rf9jZg@mail.gmail.com>
To: MILE IETF <mile@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable
Archived-At: <https://mailarchive.ietf.org/arch/msg/mile/0VgNwZnFtecoUMqYVlWNUUnK974>
Subject: Re: [mile] revising the charter text
X-BeenThere: mile@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Managed Incident Lightweight Exchange, IODEF extensions and RID exchanges" <mile.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mile>, <mailto:mile-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mile/>
List-Post: <mailto:mile@ietf.org>
List-Help: <mailto:mile-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mile>, <mailto:mile-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 20 Sep 2018 03:49:51 -0000

Hi all,

We have received several supports, and we have received no objection
on the revised charter text.
Thank you very much for those of you who kindly reviewed the text.

We'll submit the revised text to the AD then.

Cheers,
Take


2018-09-05 14:16 GMT+09:00 Takeshi Takahashi <takeshi_takahashi@nict.go.jp>:
> Hi Bret and all,
>
> The attached file records all the changes from the original version of the charter.
> You could see that quite a lot of sentences were modified, so it could be confusing.
>
> The fundamental changes we have made were allowing MILE transport protocols to exchange non-IODEF contents, including STIX contents (in XML and JSON).
> In addition to that, we have changed sentences so that the charter will reflect the current status of MILE WG.
> These edits are based on the result of the discussion during the Montreal meeting and the feedbacks on this mailing list.
>
> For our perusal, the following four itemized bullet points(highlighted in the attached file) state the work MILE will address from now on.
>
> - Revise the IODEF document to incorporate enhancements and extensions based on operational experience.
> - Provide guidance on the implementation and use of IODEF to facilitate interoperability.
> - Update and enhance these transport protocols to optimize their performance and representations. More explicitly, documenting how ROLIE can transport JSON representations.
> - Define and document how these transport protocols can also be used to support other security information exchange formats. For example, documenting how ROLIE can transport STIX (Secure Threat Intelligence eXchange) data.
>
> If further addition is preferred or necessary, we still can discuss it here.
> So, any feedback or proposal is very much appreciated.
>
> Thank you, and kind regards,
> Take
>
>
>
> From: Bret Jordan <jordan.ietf@gmail.com>
> Sent: Wednesday, September 5, 2018 12:37 PM
> To: Takeshi Takahashi <takeshi_takahashi@nict.go.jp>
> Cc: MILE IETF <mile@ietf.org>
> Subject: Re: [mile] revising the charter text
>
> Take,
>
> It seems like there are a few additions to this charter beyond defining how one could use ROLIE to transport STIX content. Can you call out / highlight the differences between the current charter and what is being proposed.
>
> Maybe I am wrong, but I felt from our last meeting in Montreal that the WG was winding down but we wanted to extend the scope of charter to address the STIX over ROLIE issue. Basically one more work item.  However, I feel like the new proposed charter might be a bit of a walk into extending the charter even further to address other new work?  Maybe I am wrong, if so, I sincerely apologize.
>
> Thanks,
> Bret
> PGP Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 0050
> "Without cryptography vihv vivc ce xhrnrw, however, the only thing that can not be unscrambled is an egg."
>
>
> On Aug 30, 2018, at 3:54 AM, Takeshi Takahashi <mailto:takeshi_takahashi@nict.go.jp> wrote:
>
> Hello all,
>
> Thank you very much for your kind feedbacks.
> Based on them, the chairs have revised the document.
> The attached file is the revision.
>
> We would like to welcome any feedback.
> If we hear no objection by September 15th, we would like to submit the revised charter text to our area director.
>
> Thank you, and best regards,
> Take
>
>
> From: mile <mailto:mile-bounces@ietf.org> On Behalf Of John Field
> Sent: Tuesday, August 21, 2018 3:07 AM
> To: Roman Danyliw <mailto:rdd@cert.org>
> Cc: MILE IETF <mailto:mile@ietf.org>; Nancy Cam-Winget (ncamwing) <mailto:ncamwing=40cisco.com@dmarc.ietf.org>
> Subject: Re: [mile] revising the charter text
>
>
>
>
> we are looking to
> Document how MILE’s transport protocols could carry other exchange formats (STIX being one such other example with ROLIE….).
>
> Understood.  Makes perfect sense.
>
> John
>
> On Mon, Aug 20, 2018 at 1:08 PM, Roman Danyliw <mailto:rdd@cert.org> wrote:
> Hello!
>
> +1.  I support the proposed changes to the charter. It captures our discussion in Montreal to transport additional data formats.
>
> Roman
>
> From: mile [mailto:mailto:mile-bounces@ietf.org] On Behalf Of Nancy Cam-Winget (ncamwing)
> Sent: Friday, August 17, 2018 12:26 PM
> To: John Field <mailto:jfield@pivotal.io>; Banghart, Stephen A. (Fed) <mailto:stephen.banghart@nist.gov>
>
> Cc: MILE IETF <mailto:mile@ietf.org>
> Subject: Re: [mile] revising the charter text
>
> Hi John,
> Thanks for the feedback!  To be clear, STIX as an exchange format is not in scope but we are looking to
> Document how MILE’s transport protocols could carry other exchange formats (STIX being one such other example with ROLIE….).
>
> Warm regards, Nancy
> From: mile <mailto:mile-bounces@ietf.org> on behalf of John Field <mailto:jfield@pivotal.io>
> Date: Friday, August 17, 2018 at 07:53
> To: "Banghart, Stephen A. (Fed)" <mailto:stephen.banghart@nist.gov>
> Cc: MILE IETF <mailto:mile@ietf.org>
> Subject: Re: [mile] revising the charter text
>
> +1
>
> .....and good to see the mention of STIX as potentially in scope for future work.
>
> John
>
> On Thu, Aug 16, 2018 at 12:25 PM, Banghart, Stephen A. (Fed) <mailto:stephen.banghart@nist.gov> wrote:
> Nancy, Take,
>
> The proposed charter looks really good, thanks for putting this together. Agree with Adam, it’s tightly scoped and very understandable, avoids some of the pitfalls I’ve seen other chartering efforts fall into.
>
> In regards to Kathleen’s comment on ROLIE/RID, ROLIE includes optional support for RID messages, that is, a ROLIE endpoint can be integrated with existing RID endpoints (thru the “/” resource, Section 5.5). Additionally, Course of Action is one of the extensions I’ve been thinking about putting together for native ROLIE support.
>
> With that in mind, I agree with Kathleen. We should call out RID as existing work that we are going to learn from and build on (especially re: security policy and requirements), but that’s it’s not necessarily a target transport mechanism for MILE as we move forward with new work.
>
> -Stephen
>
> From: mile <mailto:mile-bounces@ietf.org> On Behalf Of Nancy Cam-Winget (ncamwing)
> Sent: Thursday, August 16, 2018 11:29 AM
> To: Adam Montville <mailto:adam.w.montville@gmail.com>; Kathleen Moriarty <mailto:kathleen.moriarty.ietf@gmail.com>
>
> Cc: MILE IETF <mailto:mile@ietf.org>
> Subject: Re: [mile] revising the charter text
>
> Thanks Adam….and yes, we’ll definitely clean up grammatical and other editorial nits/comments before final copy!
>
> Best, Nancy
>
> From: mile <mailto:mile-bounces@ietf.org> on behalf of Adam Montville <mailto:adam.w.montville@gmail.com>
> Date: Thursday, August 16, 2018 at 06:57
> To: Kathleen Moriarty <mailto:kathleen.moriarty...mailto:ietf@gmail.com>
> Cc: MILE IETF <mailto:mile@ietf.org>
> Subject: Re: [mile] revising the charter text
>
> I'm not as familiar with RID as Kathleen and others... Aside from Kathleen's comments, I think the charter looks pretty good - grammatical issues will be cleaned up eventually right? It seems like a tightly scoped effort, which is good.
>
> Kind regards,
>
> Adam
>
> On Aug 16, 2018, at 8:41 AM, Kathleen Moriarty <mailto:kathleen.moriarty.ietf@gmail.com> wrote:
>
> Hello Take,
>
> The update looks very good.  Thanks to you and the chairs for the first draft.  There are a few grammar nits to clean up and I just have one edit suggestion.
>
> The first place where RID appears has not been expanded because of the editing.
>
> I think RID is useful as a reference and to incorporate the policy and security aspects at this point rather than actually using it as a transport protocol (it's of course possible, but there are better solutions as RID development started a long time ago)..  It probably doesn't make sense to expand too much that thinking into the charter and the point is hit on in a sentence that remains on it containing policy.  The ability to include courses of actions in RID (I believe that was carried into ROLIE, but am not positive off hand) and some of the other action handling is useful as the requirements development for RID was quite an effort.  In other words, it has a lot of lessons learned so we don't leave something out or unnecessarily reinvent the wheel.  It also handled multi-party authentication and there may be some information gleaned from that work (that had lots of review) to do that in follow on protocols looking for that capability using JOSE or COSE for example.
>
> If I find a little time, I may try to add subtle wording suggestions to make sure the usefulness of RID is understood and that it is not overstated as it's SOAPy and we have better answers now for transport.  The security requirements and solution development for policy and security controls I think is where it is still useful.
>
> Best regards,
> Kathleen
>
>
>
> On Thu, Aug 16, 2018 at 12:11 AM, Takeshi Takahashi <mailto:takeshi_takahashi@nict..http://go.jp> wrote:
> Hi all,
>
> During the MILE session @ IETF102 in Montreal, we agreed to modify the
> charter text.
> Based on the discussion during the session, the co-chairs (Nancy, Dave, and
> I) have drafted a revision.
> Please see the attached files.
>
> MILEcharterv2.docx: the revised text with change records
> MILEcharterv2_clean.txt: the revised text without change records
>
> We would like to hear your opinion on this revised text.
> If you have any concerns, corrections, or additions, please kindly let us
> know.
>
> Thanks,
> Take
>
>
>
> _______________________________________________
> mile mailing list
> mailto:mile@ietf.org
> https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fmile&data=02%7C01%7Cstephen.banghart%40nist.gov%7Cceacad5d962848cef62408d6038cfd97%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C0%7C636700301416938592&sdata=nxXxCMsm5rl%2FlMw%2FZc8OXNb9I4ZulxwVaFqULA7uyYQ%3D&reserved=0
>
>
>
>
> --
>
> Best regards,
> Kathleen
> _______________________________________________
> mile mailing list
> mailto:mile@ietf.org
> https://www.ietf.org/mailman/listinfo/mile
>
>
> _______________________________________________
> mile mailing list
> mailto:mile@ietf.org
> https://www.ietf.org/mailman/listinfo/mile
>
>
>
>
> --
> John P. Field | Product Lead - Security and Compliance | Pivotal
> Direct: (908) 962-3394 | mailto:jfield@gopivotal.comhttp://pivotal.io
>
> _______________________________________________
> mile mailing list
> mailto:mile@ietf.org
> https://www.ietf.org/mailman/listinfo/mile
>
>
>
>
> --
> John P. Field | Product Lead - Security and Compliance | Pivotal
> Direct: (908) 962-3394 | mailto:jfield@gopivotal.comhttp://pivotal.io
> <MILEcharterv4.docx>_______________________________________________
> mile mailing list
> mailto:mile@ietf.org
> https://www.ietf.org/mailman/listinfo/mile
>
>
> _______________________________________________
> mile mailing list
> mile@ietf.org
> https://www.ietf.org/mailman/listinfo/mile
>



-- 
--
Takeshi Takahashi, Ph.D., CISSP, PMP
"Practice makes perfect!"

v2.23.0 | Report a Bug | By Email