IETF Logo Mail Archive

Re: [mile] revising the charter text

"Takeshi Takahashi" <takeshi_takahashi@nict.go.jp> Wed, 05 September 2018 05:17 UTC

Return-Path: <takeshi_takahashi@nict.go.jp>
X-Original-To: mile@ietfa.amsl.com
Delivered-To: mile@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B04C31277D2 for <mile@ietfa.amsl.com>; Tue, 4 Sep 2018 22:17:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.201
X-Spam-Level:
X-Spam-Status: No, score=-4.201 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_MED=-2.3, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id LCdPl_G0DpOL for <mile@ietfa.amsl.com>; Tue, 4 Sep 2018 22:17:00 -0700 (PDT)
Received: from ns2.nict.go.jp (ns2.nict.go.jp [IPv6:2001:df0:232:300::2]) by ietfa.amsl.com (Postfix) with ESMTP id F1155130DF7 for <mile@ietf.org>; Tue, 4 Sep 2018 22:16:53 -0700 (PDT)
Received: from gw2.nict.go.jp (gw2.nict.go.jp [133.243.18.251]) by ns2.nict.go.jp with ESMTP id w855Go5Q035870; Wed, 5 Sep 2018 14:16:50 +0900 (JST)
Received: from mail2.nict.go.jp (mail2.nict.go.jp [133.243.18.15]) by gw2.nict.go.jp with ESMTP id w855Gnkf035862; Wed, 5 Sep 2018 14:16:49 +0900 (JST)
Received: from DESKTOP2JPR8KD (ssh1.nict.go.jp [133.243.3.49]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail2.nict.go.jp (NICT Mail Spool Server2) with ESMTPS id D0828128D4; Wed, 5 Sep 2018 14:16:48 +0900 (JST)
From: Takeshi Takahashi <takeshi_takahashi@nict.go.jp>
To: 'Bret Jordan' <jordan.ietf@gmail.com>
Cc: 'MILE IETF' <mile@ietf.org>
References: <000001d43517$3154fbc0$93fef340$@nict.go.jp> <CAHbuEH7d36ibkRXR0KuPJMwnBiRajSt2OAxiiLn44HzW8aQTMA@mail.gmail.com> <70C94385-85B4-421B-AD7C-6FDF57197B3F@gmail.com> <509FB392-A135-45EA-A4E8-969EB28211EC@cisco.com> <DM5PR0901MB2199314BCDD7E4A9BB133112F03E0@DM5PR0901MB2199.namprd09.prod.outlook.com> <CAC0wChGXpzHeArsLALpiJF18eZ_s463cc2H8YOHAfnBJLhRnMA@mail.gmail.com> <4B73C53A-A0FE-4CC8-A412-9953370ABA3A@cisco.com> <359EC4B99E040048A7131E0F4E113AFC014C431AA4@marathon> <CAC0wChFkXxW_FMu7yJDUamhtHma34wB2hgfftj2op__yCec13A@mail.gmail.com> <0c9b01d44047$6c032c70$44098550$@nict.go.jp> <61C5FEEA-B6AB-46F4-A9C9-A2F184760426@gmail.com>
In-Reply-To: <61C5FEEA-B6AB-46F4-A9C9-A2F184760426@gmail.com>
Date: Wed, 05 Sep 2018 14:16:44 +0900
Message-ID: <098f01d444d7$a4379330$eca6b990$@nict.go.jp>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="----=_NextPart_000_0990_01D44523.1421AC30"
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AQHjyNzE2OHkCG6wSMevOnwbXU+jpgGf+MVCAeoGjl8BfMYwxwH5usaKAs1JrzIBskSQVQEeZ+qAARIla/IC3Tx8UAIwbQMYpCwkusA=
Content-Language: ja
X-Virus-Scanned: clamav-milter 0.100.1 at zenith2
X-Virus-Status: Clean
Archived-At: <https://mailarchive.ietf.org/arch/msg/mile/X-k06utmsviglhaUKXe-MwG-Rag>
Subject: Re: [mile] revising the charter text
X-BeenThere: mile@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Managed Incident Lightweight Exchange, IODEF extensions and RID exchanges" <mile.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/mile>, <mailto:mile-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/mile/>
List-Post: <mailto:mile@ietf.org>
List-Help: <mailto:mile-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/mile>, <mailto:mile-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Sep 2018 05:17:14 -0000

Hi Bret and all,

The attached file records all the changes from the original version of the charter.
You could see that quite a lot of sentences were modified, so it could be confusing.

The fundamental changes we have made were allowing MILE transport protocols to exchange non-IODEF contents, including STIX contents (in XML and JSON).
In addition to that, we have changed sentences so that the charter will reflect the current status of MILE WG.
These edits are based on the result of the discussion during the Montreal meeting and the feedbacks on this mailing list.

For our perusal, the following four itemized bullet points(highlighted in the attached file) state the work MILE will address from now on.

- Revise the IODEF document to incorporate enhancements and extensions based on operational experience.
- Provide guidance on the implementation and use of IODEF to facilitate interoperability.
- Update and enhance these transport protocols to optimize their performance and representations. More explicitly, documenting how ROLIE can transport JSON representations.
- Define and document how these transport protocols can also be used to support other security information exchange formats. For example, documenting how ROLIE can transport STIX (Secure Threat Intelligence eXchange) data.

If further addition is preferred or necessary, we still can discuss it here.
So, any feedback or proposal is very much appreciated.

Thank you, and kind regards,
Take



From: Bret Jordan <jordan.ietf@gmail.com> 
Sent: Wednesday, September 5, 2018 12:37 PM
To: Takeshi Takahashi <takeshi_takahashi@nict.go.jp>
Cc: MILE IETF <mile@ietf.org>
Subject: Re: [mile] revising the charter text

Take,

It seems like there are a few additions to this charter beyond defining how one could use ROLIE to transport STIX content. Can you call out / highlight the differences between the current charter and what is being proposed. 

Maybe I am wrong, but I felt from our last meeting in Montreal that the WG was winding down but we wanted to extend the scope of charter to address the STIX over ROLIE issue. Basically one more work item.  However, I feel like the new proposed charter might be a bit of a walk into extending the charter even further to address other new work?  Maybe I am wrong, if so, I sincerely apologize. 

Thanks,
Bret
PGP Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 0050
"Without cryptography vihv vivc ce xhrnrw, however, the only thing that can not be unscrambled is an egg."


On Aug 30, 2018, at 3:54 AM, Takeshi Takahashi <mailto:takeshi_takahashi@nict.go.jp> wrote:

Hello all,

Thank you very much for your kind feedbacks.
Based on them, the chairs have revised the document.
The attached file is the revision.

We would like to welcome any feedback.
If we hear no objection by September 15th, we would like to submit the revised charter text to our area director.

Thank you, and best regards,
Take


From: mile <mailto:mile-bounces@ietf.org> On Behalf Of John Field
Sent: Tuesday, August 21, 2018 3:07 AM
To: Roman Danyliw <mailto:rdd@cert.org>
Cc: MILE IETF <mailto:mile@ietf.org>; Nancy Cam-Winget (ncamwing) <mailto:ncamwing=40cisco.com@dmarc.ietf.org>
Subject: Re: [mile] revising the charter text




we are looking to
Document how MILE’s transport protocols could carry other exchange formats (STIX being one such other example with ROLIE….).

Understood.  Makes perfect sense.

John

On Mon, Aug 20, 2018 at 1:08 PM, Roman Danyliw <mailto:rdd@cert.org> wrote:
Hello!

+1.  I support the proposed changes to the charter. It captures our discussion in Montreal to transport additional data formats.

Roman

From: mile [mailto:mailto:mile-bounces@ietf.org] On Behalf Of Nancy Cam-Winget (ncamwing)
Sent: Friday, August 17, 2018 12:26 PM
To: John Field <mailto:jfield@pivotal.io>; Banghart, Stephen A. (Fed) <mailto:stephen.banghart@nist.gov>

Cc: MILE IETF <mailto:mile@ietf.org>
Subject: Re: [mile] revising the charter text

Hi John,
Thanks for the feedback!  To be clear, STIX as an exchange format is not in scope but we are looking to 
Document how MILE’s transport protocols could carry other exchange formats (STIX being one such other example with ROLIE….).

Warm regards, Nancy
From: mile <mailto:mile-bounces@ietf.org> on behalf of John Field <mailto:jfield@pivotal.io>
Date: Friday, August 17, 2018 at 07:53
To: "Banghart, Stephen A. (Fed)" <mailto:stephen.banghart@nist.gov>
Cc: MILE IETF <mailto:mile@ietf.org>
Subject: Re: [mile] revising the charter text

+1  

....and good to see the mention of STIX as potentially in scope for future work.

John  

On Thu, Aug 16, 2018 at 12:25 PM, Banghart, Stephen A. (Fed) <mailto:stephen.banghart@nist.gov> wrote:
Nancy, Take,

The proposed charter looks really good, thanks for putting this together. Agree with Adam, it’s tightly scoped and very understandable, avoids some of the pitfalls I’ve seen other chartering efforts fall into.

In regards to Kathleen’s comment on ROLIE/RID, ROLIE includes optional support for RID messages, that is, a ROLIE endpoint can be integrated with existing RID endpoints (thru the “/” resource, Section 5.5). Additionally, Course of Action is one of the extensions I’ve been thinking about putting together for native ROLIE support. 

With that in mind, I agree with Kathleen. We should call out RID as existing work that we are going to learn from and build on (especially re: security policy and requirements), but that’s it’s not necessarily a target transport mechanism for MILE as we move forward with new work.

-Stephen

From: mile <mailto:mile-bounces@ietf.org> On Behalf Of Nancy Cam-Winget (ncamwing)
Sent: Thursday, August 16, 2018 11:29 AM
To: Adam Montville <mailto:adam.w.montville@gmail.com>; Kathleen Moriarty <mailto:kathleen.moriarty.ietf@gmail.com>

Cc: MILE IETF <mailto:mile@ietf.org>
Subject: Re: [mile] revising the charter text

Thanks Adam….and yes, we’ll definitely clean up grammatical and other editorial nits/comments before final copy!

Best, Nancy

From: mile <mailto:mile-bounces@ietf.org> on behalf of Adam Montville <mailto:adam.w.montville@gmail.com>
Date: Thursday, August 16, 2018 at 06:57
To: Kathleen Moriarty <mailto:kathleen.moriarty...mailto:ietf@gmail.com>
Cc: MILE IETF <mailto:mile@ietf.org>
Subject: Re: [mile] revising the charter text

I'm not as familiar with RID as Kathleen and others... Aside from Kathleen's comments, I think the charter looks pretty good - grammatical issues will be cleaned up eventually right? It seems like a tightly scoped effort, which is good. 

Kind regards,

Adam

On Aug 16, 2018, at 8:41 AM, Kathleen Moriarty <mailto:kathleen.moriarty.ietf@gmail.com> wrote:

Hello Take, 

The update looks very good.  Thanks to you and the chairs for the first draft.  There are a few grammar nits to clean up and I just have one edit suggestion.

The first place where RID appears has not been expanded because of the editing.

I think RID is useful as a reference and to incorporate the policy and security aspects at this point rather than actually using it as a transport protocol (it's of course possible, but there are better solutions as RID development started a long time ago)..  It probably doesn't make sense to expand too much that thinking into the charter and the point is hit on in a sentence that remains on it containing policy.  The ability to include courses of actions in RID (I believe that was carried into ROLIE, but am not positive off hand) and some of the other action handling is useful as the requirements development for RID was quite an effort.  In other words, it has a lot of lessons learned so we don't leave something out or unnecessarily reinvent the wheel.  It also handled multi-party authentication and there may be some information gleaned from that work (that had lots of review) to do that in follow on protocols looking for that capability using JOSE or COSE for example.

If I find a little time, I may try to add subtle wording suggestions to make sure the usefulness of RID is understood and that it is not overstated as it's SOAPy and we have better answers now for transport.  The security requirements and solution development for policy and security controls I think is where it is still useful.

Best regards,
Kathleen



On Thu, Aug 16, 2018 at 12:11 AM, Takeshi Takahashi <mailto:takeshi_takahashi@nict..http://go.jp> wrote:
Hi all,

During the MILE session @ IETF102 in Montreal, we agreed to modify the
charter text.
Based on the discussion during the session, the co-chairs (Nancy, Dave, and
I) have drafted a revision.
Please see the attached files.

MILEcharterv2.docx: the revised text with change records
MILEcharterv2_clean.txt: the revised text without change records

We would like to hear your opinion on this revised text.
If you have any concerns, corrections, or additions, please kindly let us
know.

Thanks,
Take



_______________________________________________
mile mailing list
mailto:mile@ietf.org
https://na01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Fmile&data=02%7C01%7Cstephen.banghart%40nist.gov%7Cceacad5d962848cef62408d6038cfd97%7C2ab5d82fd8fa4797a93e054655c61dec%7C1%7C0%7C636700301416938592&sdata=nxXxCMsm5rl%2FlMw%2FZc8OXNb9I4ZulxwVaFqULA7uyYQ%3D&reserved=0




-- 

Best regards,
Kathleen
_______________________________________________
mile mailing list
mailto:mile@ietf.org
https://www.ietf.org/mailman/listinfo/mile


_______________________________________________
mile mailing list
mailto:mile@ietf.org
https://www.ietf.org/mailman/listinfo/mile




-- 
John P. Field | Product Lead - Security and Compliance | Pivotal 
Direct: (908) 962-3394 | mailto:jfield@gopivotal.comhttp://pivotal.io  

_______________________________________________
mile mailing list
mailto:mile@ietf.org
https://www.ietf.org/mailman/listinfo/mile




-- 
John P. Field | Product Lead - Security and Compliance | Pivotal 
Direct: (908) 962-3394 | mailto:jfield@gopivotal.comhttp://pivotal.io  
<MILEcharterv4.docx>_______________________________________________
mile mailing list
mailto:mile@ietf.org
https://www.ietf.org/mailman/listinfo/mile

v2.23.0 | Report a Bug | By Email