[saag] SACM WG report
Chris Inacio <inacio@cert.org> Thu, 19 November 2020 02:59 UTC
Return-Path: <inacio@cert.org>
X-Original-To: saag@ietfa.amsl.com
Delivered-To: saag@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A739A3A0AC6 for <saag@ietfa.amsl.com>; Wed, 18 Nov 2020 18:59:37 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.088
X-Spam-Level:
X-Spam-Status: No, score=-2.088 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cert.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 6n_z8G4JBwhZ for <saag@ietfa.amsl.com>; Wed, 18 Nov 2020 18:59:36 -0800 (PST)
Received: from taper.sei.cmu.edu (taper.sei.cmu.edu [147.72.252.16]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1E34F3A0AC4 for <saag@ietf.org>; Wed, 18 Nov 2020 18:59:35 -0800 (PST)
Received: from korb.sei.cmu.edu (korb.sei.cmu.edu [10.64.21.30]) by taper.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 0AJ2xY1A021770 for <saag@ietf.org>; Wed, 18 Nov 2020 21:59:34 -0500
DKIM-Filter: OpenDKIM Filter v2.11.0 taper.sei.cmu.edu 0AJ2xY1A021770
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cert.org; s=yc2bmwvrj62m; t=1605754774; bh=3hGphFGWzqApw10VjeggJA+Ws4ep1uAPU+9ONYdoVaE=; h=From:To:Subject:Date:From; b=l+x60yXDufYi1RlCq3KRKF1pcH6MOk3eJ3Qt8tigQkLaX83ewKS1w4yF2eRxX6wfo YFrmuTKCdOooUVU9md9X6xrNWUHw2V3gzoaOu1Yyg8+s5RdQ9dcWInyPAuGYcDjr8J 7J3kXbgHRMoZjW6KcNgcxITKbtd+KzJ8gLPPURAU=
Received: from MURIEL.ad.sei.cmu.edu (muriel.ad.sei.cmu.edu [147.72.252.47]) by korb.sei.cmu.edu (8.14.7/8.14.7) with ESMTP id 0AJ2xYbJ025239 for <saag@ietf.org>; Wed, 18 Nov 2020 21:59:34 -0500
Received: from MORRIS.ad.sei.cmu.edu (147.72.252.46) by MURIEL.ad.sei.cmu.edu (147.72.252.47) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256) id 15.1.2106.2; Wed, 18 Nov 2020 21:59:34 -0500
Received: from MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb]) by MORRIS.ad.sei.cmu.edu ([fe80::555b:9498:552e:d1bb%13]) with mapi id 15.01.2106.002; Wed, 18 Nov 2020 21:59:34 -0500
From: Chris Inacio <inacio@cert.org>
To: "saag@ietf.org" <saag@ietf.org>
Thread-Topic: SACM WG report
Thread-Index: AQHWviABcy3RJJ2/l0qREWCEpDHJzw==
Date: Thu, 19 Nov 2020 02:59:32 +0000
Message-ID: <etPan.5fb5df94.74e280fe.13a8f@cert.org>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
x-originating-ip: [10.64.203.42]
Content-Type: multipart/alternative; boundary="_000_etPan5fb5df9474e280fe13a8fcertorg_"
MIME-Version: 1.0
Archived-At: <https://mailarchive.ietf.org/arch/msg/saag/NQHqnarwozXYOs_4hHr8dcRBXlI>
Subject: [saag] SACM WG report
X-BeenThere: saag@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Security Area Advisory Group <saag.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/saag>, <mailto:saag-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/saag/>
List-Post: <mailto:saag@ietf.org>
List-Help: <mailto:saag-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/saag>, <mailto:saag-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 19 Nov 2020 02:59:38 -0000
Security Automation and Continuous Monitoring (SACM) met during IETF–109. The proposed EPCP draft [1] is being withdrawn unless there are objections and new editors volunteer on the mailing list. It is viewed as demonstrating the ideas which have been adopted in other SDOs. The CoSWID draft [2] is being updated based on AD feedback before it goes to IETF last call. A final update before LC is viewed by the WG as editorial and won’t need another WGLC. ROLIE configuration checklist [3] was recently accepted as a working group item and we expect a relative quick turnaround in the working group on this draft. The SACM architecture draft[4] was discussed and a new draft is imminent based on existing feedback. The WG would like more reviews and seeks volunteers for implementations. Karen and Chris [1] datatracker.ietf.org/doc/draft-ietf-sacm-epcp<https://datatracker.ietf.org/doc/draft-ietf-sacm-epcp/> [2] datatracker.ietf.org/doc/draft-ietf-sacm-coswid<https://datatracker.ietf.org/doc/draft-ietf-sacm-coswid/> [3] datatracker.ietf.org/doc/draft-mandm-sacm-rolie-configuration-checklist<https://datatracker.ietf.org/doc/draft-mandm-sacm-rolie-configuration-checklist/> [4] datatracker.ietf.org/doc/draft-ietf-sacm-arch<https://datatracker.ietf.org/doc/draft-ietf-sacm-arch/>
- [saag] SACM WG report Chris Inacio