Re: [mile] [EXT] WGLC for Vulnerability extension draft

"Banghart, Stephen A. (Fed)" <stephen.banghart@nist.gov> Mon, 28 October 2019 15:37 UTC

Return-Path: <stephen.banghart@nist.gov>
X-Original-To: mile@ietfa.amsl.com
Delivered-To: mile@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 18AF31208C4 for <mile@ietfa.amsl.com>; Mon, 28 Oct 2019 08:37:00 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=nist.gov
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1IPs8HrDiTtD for <mile@ietfa.amsl.com>; Mon, 28 Oct 2019 08:36:57 -0700 (PDT)
Received: from GCC02-BL0-obe.outbound.protection.outlook.com (mail-bl2gcc02on2127.outbound.protection.outlook.com [40.107.89.127]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2631C120850 for <mile@ietf.org>; Mon, 28 Oct 2019 08:36:57 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=MA7NHvU49/b79LwJemxSpgDZePa7h8jLT8c+Ww+chHTPg6X+gm2n11OyKvyC3eRtDjCfgZTmuqnAkifsHYhSCPkV61GBTmOqXvwGd0ogwmlSdvBH4IGpqG21RyaurT4gNUv+FwAzPP/nb07xdIo4a2DghUsxMjQ1rUBB/s2UAxF3a1UvVWTuvdmIsIwkvFzE3JoyRFu0shKFvgvLl/UmuxlkyPhMdH1io9hb7AU7OUeX5fp/39/JEDUr2BEthyRp8v9oOm6aMAMz1cl856PfXL2/FgfuBcCup7EgVS4YEZdrwkJGyigRPi2+1DzDu3gVZTq2BXUoyFPJMg481t+97w==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HWOZJIihhfoSWUGAq5zVu5ZkgzY2rOYDwYrWOnoYzO8=; b=dkQHoyRAKA5Q0DHCcc/jjfL+uwDpra5/OOzWX5XPLSW1+FR8QfcGO3hwozvDNH4Y2Ownv1m6X4xEpQrorvvPfSTV89ZO+jYXqrEN8HRF8ZnEjQkHp32ggRgVE/KbBNOj/5zntyhCSagcp8UI3IvnO4RTYKgpg9MEPuRplOyFlHxoFvVHa9NeHHetQv51cc4pHpftASoKDkxA0zT26abHJzJlIUr75ahNYSPYpjIQ5Ddercp9iyoChCBUMqJoV3KprFQykco9Hm1hXE4NieuwFSurpm7sFgL/PFSKZvs7vh1sVpNk3OrmhJQi4cLE8qjIK2gQ1wdqOMm+2Nkbe6lxhQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=nist.gov; dmarc=pass action=none header.from=nist.gov; dkim=pass header.d=nist.gov; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=nist.gov; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=HWOZJIihhfoSWUGAq5zVu5ZkgzY2rOYDwYrWOnoYzO8=; b=hyGL1pmLknUO1GOqGRlSul6+k89yPT91KZ7kJtbn1bxUJn9rTZN8ojv7gjBX7zgAJlNoP8q99Su4zmoFkOfSbwX5MYLQzh3GaAqVu647A+knnCaOkFiCvhmgfyL87GRib7Vh4HmOVaGzIaQXkumzRnuSifqQwD/NYFUj2igUT3Q=
Received: from BY5PR09MB4456.namprd09.prod.outlook.com (52.135.40.19) by BY5PR09MB4262.namprd09.prod.outlook.com (52.135.40.212) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2387.22; Mon, 28 Oct 2019 15:36:53 +0000
Received: from BY5PR09MB4456.namprd09.prod.outlook.com ([fe80::6055:205c:8957:7d8b]) by BY5PR09MB4456.namprd09.prod.outlook.com ([fe80::6055:205c:8957:7d8b%5]) with mapi id 15.20.2387.023; Mon, 28 Oct 2019 15:36:53 +0000
From: "Banghart, Stephen A. (Fed)" <stephen.banghart@nist.gov>
To: "Haynes Jr., Dan" <dhaynes@mitre.org>, "Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com>, "mile@ietf.org" <mile@ietf.org>
Thread-Topic: [mile] [EXT] WGLC for Vulnerability extension draft
Thread-Index: AQHVck12lFokgMcvukOx6zRRR1rAradlhuuAgArWysA=
Date: Mon, 28 Oct 2019 15:36:53 +0000
Message-ID: <BY5PR09MB44567B2A4AF4ECB588CB840DF0660@BY5PR09MB4456.namprd09.prod.outlook.com>
References: <4826_1569270523_5D892AFB_4826_289_1_25380CEE-82FC-40D6-BD6F-FCDDF1F7240C@cisco.com> <E5AFCDBF-1F77-4F0B-9FD4-CD7DDD3A801F@mitre.org>
In-Reply-To: <E5AFCDBF-1F77-4F0B-9FD4-CD7DDD3A801F@mitre.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=stephen.banghart@nist.gov;
x-originating-ip: [129.6.196.176]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: afdfa076-bcb0-4f06-527b-08d75bbca877
x-ms-traffictypediagnostic: BY5PR09MB4262:|BY5PR09MB4262:
x-ms-exchange-purlcount: 1
x-ld-processed: 2ab5d82f-d8fa-4797-a93e-054655c61dec,ExtAddr
x-microsoft-antispam-prvs: <BY5PR09MB426257DFD2371AEE75ECAD5CF0660@BY5PR09MB4262.namprd09.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:9508;
x-forefront-prvs: 0204F0BDE2
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(376002)(366004)(346002)(136003)(396003)(39860400002)(51914003)(199004)(189003)(66066001)(7736002)(99286004)(6506007)(8936002)(6116002)(790700001)(486006)(3846002)(606006)(14454004)(53546011)(74316002)(11346002)(2906002)(55016002)(446003)(476003)(236005)(6246003)(25786009)(81156014)(81166006)(316002)(966005)(9686003)(54896002)(6306002)(8676002)(229853002)(52536014)(26005)(33656002)(7696005)(186003)(71190400001)(71200400001)(256004)(5660300002)(76116006)(2501003)(66476007)(64756008)(66446008)(66556008)(66946007)(76176011)(86362001)(102836004)(110136005)(478600001)(6436002); DIR:OUT; SFP:1102; SCL:1; SRVR:BY5PR09MB4262; H:BY5PR09MB4456.namprd09.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: nist.gov does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: J/++ZziQ4Ec+tnxyz+MOcVGmnvSsj5HQMXA/xGCKpkHYX7j8mgB6fEjt5yTBn9m8hqdFnIL1zCMBdLdt5i2GqRy9Y+dwiGS4Hih31ya9NSGKsH9KtB5G1LzGy4BELstJClBJfVmBOMdph1hqThqB00gBSk7PG4YWif+6pqRoVq+Dtbm27uxWEIdplwVaxVl9ElC89ybAiit8yJTDHLpPUHQBoVMViToZmh8iOvNRK2ykw0KQQ26vkWHhfJKWQzjgqJbplnw1RN5d2VQl0FVLfnYjd9YibgaGVVlxh1zMT8a66Ozelr4kI2P/JAlb3M4kJ3P8I8lTgC/zRSp6yF6PdjXdu8st7a/nVygtGkDHXOHHOeZRV6hp5CR4Tec3f/G3FWJ5j/p1vd8j0R5AojsRQ64OYstBLljQ1oFA74keYtHaK0ggj5KahDMoaZt45KMnjLDP9vN7HBEOuKoqR+Mti/p7i/nMqJ4MnSZu6lXeB6Y=
x-ms-exchange-transport-forked: True
Content-Type: multipart/alternative; boundary="_000_BY5PR09MB44567B2A4AF4ECB588CB840DF0660BY5PR09MB4456namp_"
MIME-Version: 1.0
X-OriginatorOrg: nist.gov
X-MS-Exchange-CrossTenant-Network-Message-Id: afdfa076-bcb0-4f06-527b-08d75bbca877
X-MS-Exchange-CrossTenant-originalarrivaltime: 28 Oct 2019 15:36:53.2594 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 2ab5d82f-d8fa-4797-a93e-054655c61dec
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: Ghwh7k+GAqxvjYXV+AGmwLA0CuY7hmfI92fK7JJgD+KcWCi+6Z9xJXBZHIsKqxyK
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY5PR09MB4262
Archived-At: <https://mailarchive.ietf.org/arch/msg/mile/MWLwvHIGrlaTz9U5uDRTILB6JUA>
Subject: Re: [mile] [EXT] WGLC for Vulnerability extension draft
X-BeenThere: mile@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Managed Incident Lightweight Exchange, IODEF extensions and RID exchanges" <mile.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mile>, <mailto:mile-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mile/>
List-Post: <mailto:mile@ietf.org>
List-Help: <mailto:mile-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mile>, <mailto:mile-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 28 Oct 2019 15:37:00 -0000

Danny,

Thanks for the review, my responses are inline.

From: mile <mile-bounces@ietf.org> On Behalf Of Haynes Jr., Dan
Sent: Monday, October 21, 2019 5:34 PM
To: Nancy Cam-Winget (ncamwing) <ncamwing@cisco.com>om>; mile@ietf.org
Subject: Re: [mile] [EXT] WGLC for Vulnerability extension draft

Hi Nancy and Stephen,

I have some minor nits and questions.


  *   Abstract
     *   Is “Vulnerability” a defined term?

Yes, I use the definition provided by RFC 4949. I call that out in section 3, but I’ll repeat the reference in the terminology section.


  *   Section 2
     *   Should this also reference RFC 8174?

Yes, I’ve updated the reference.


  *   Section 3
     *   Change “Note again…any information that in is the abstract realm…” to “Note again…any information that is in the abstract realm…”.

Fixed, thanks.


  *   Section 4
     *   Change “JSON based” to “JSON-based”.

        Fixed.


Beyond that, I am comfortable with moving this draft forward.

Thanks,

Danny

From: mile <mile-bounces@ietf.org<mailto:mile-bounces@ietf.org>> on behalf of "Nancy Cam-Winget (ncamwing)" <ncamwing@cisco.com<mailto:ncamwing@cisco.com>>
Date: Monday, September 23, 2019 at 4:29 PM
To: "mile@ietf.org<mailto:mile@ietf.org>" <mile@ietf.org<mailto:mile@ietf.org>>
Subject: [EXT] [mile] WGLC for Vulnerability extension draft

Fellow MILE participants,

This is a Working Group Last Call for https://datatracker.ietf.org/doc/draft-ietf-mile-rolie-vuln/<https://gcc01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-mile-rolie-vuln%2F&data=02%7C01%7Cstephen.banghart%40nist.gov%7Ce9f34436d58244a0f84408d7566e81c0%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C1%7C637072904942936343&sdata=U3%2BGy7%2Ftz%2BtoCg%2Bdq5FvdqBbZNzpNrld2OQ9DhfQCRM%3D&reserved=0>

Please provide your review and feedback to the draft’s readiness by Oct 21st so that we can move it forward.

Warm regards,
                Nancy