IETF Logo Mail Archive

Re: [mile] Security alert reporting - the firstMILE

Tony Rutkowski <tony@yaanatech.com> Tue, 22 March 2016 17:16 UTC

Return-Path: <tony@yaanatech.com>
X-Original-To: mile@ietfa.amsl.com
Delivered-To: mile@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 18A9912D8C8 for <mile@ietfa.amsl.com>; Tue, 22 Mar 2016 10:16:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id h9JdrLRiRyHd for <mile@ietfa.amsl.com>; Tue, 22 Mar 2016 10:15:55 -0700 (PDT)
Received: from sc9-admin1.yaanatech.net (63-128-177-34-static.dzbja.com [63.128.177.34]) by ietfa.amsl.com (Postfix) with ESMTP id D824512D8D1 for <mile@ietf.org>; Tue, 22 Mar 2016 10:15:55 -0700 (PDT)
Received: from extmail1.yaanatech.com (extmail1.yaanatech.com [63.128.177.51]) by sc9-admin1.yaanatech.net (Postfix) with ESMTP id 0690AB8; Tue, 22 Mar 2016 17:15:54 +0000 (UTC)
Received: from [192.168.1.51] (pool-173-67-205-17.clppva.fios.verizon.net [173.67.205.17]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by extmail1.yaanatech.com (Postfix) with ESMTP id 9338F5808E; Tue, 22 Mar 2016 17:12:57 +0000 (UTC)
References: <56F166CC.4020103@htt-consult.com>
To: Robert Moskowitz <rgm-sec@htt-consult.com>, mile@ietf.org
From: Tony Rutkowski <tony@yaanatech.com>
Organization: Yaana Technologies
Message-ID: <56F17DC8.8000800@yaanatech.com>
Date: Tue, 22 Mar 2016 13:15:52 -0400
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.7.0
MIME-Version: 1.0
In-Reply-To: <56F166CC.4020103@htt-consult.com>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: quoted-printable
Archived-At: <http://mailarchive.ietf.org/arch/msg/mile/1WX8kerOo4N90Bms_wXBGgbr0xk>
Subject: Re: [mile] Security alert reporting - the firstMILE
X-BeenThere: mile@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
Reply-To: tony@yaanatech.com
List-Id: "Managed Incident Lightweight Exchange, IODEF extensions and RID exchanges" <mile.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mile>, <mailto:mile-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mile/>
List-Post: <mailto:mile@ietf.org>
List-Help: <mailto:mile-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mile>, <mailto:mile-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 22 Mar 2016 17:16:08 -0000

Hi Bob,

There is a lot of puzzlement to go around.
In trying to track all the parallel universes,
are you creating an alternative to TAXII here?
Or ROLLE come to life?

How would you differentiate firstMILE?

-t


On 2016-03-22 11:37 AM, Robert Moskowitz wrote:
> I have been puzzled by the lack of a standardized security alert 
> reporting process.  After a few discussions and a lot of thought on 
> the problem, I have come up with firstMILE:

v2.23.0 | Report a Bug | By Email