[sacm] SACM Architecture Draft

Adam Montville <adam.w.montville@gmail.com> Thu, 27 December 2018 21:29 UTC

Return-Path: <adam.w.montville@gmail.com>
X-Original-To: sacm@ietfa.amsl.com
Delivered-To: sacm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 25DA5124B0C for <sacm@ietfa.amsl.com>; Thu, 27 Dec 2018 13:29:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.999
X-Spam-Level:
X-Spam-Status: No, score=-1.999 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id esXeDvwXwGtx for <sacm@ietfa.amsl.com>; Thu, 27 Dec 2018 13:29:31 -0800 (PST)
Received: from mail-pf1-x434.google.com (mail-pf1-x434.google.com [IPv6:2607:f8b0:4864:20::434]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 205CB12008A for <sacm@ietf.org>; Thu, 27 Dec 2018 13:29:31 -0800 (PST)
Received: by mail-pf1-x434.google.com with SMTP id 64so9586944pfr.9 for <sacm@ietf.org>; Thu, 27 Dec 2018 13:29:31 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:mime-version:subject:message-id:date:cc:to; bh=mjF1aWIxCMMlge1DhPhy4j6FmNCbrCIJ032EgWgF1kg=; b=RdEVkuWp7CJrh/X0mmGpLqiMCb9WOaZUnwIphuOYcvw4JfQKfi2yGhv/J0uo5zVQTI yQvUmK8FOHpAtwMtlSS3nknCGPVRAsSj9F2+HeFeqDx/E+SwvYwzWnxMIGALOaxPoZIj nKXHbJQ5a4ZrAWBLSjM1Vyx07Rb2ZA+9EhvxmAP9raNV5VKwvEcU8qbQ77DO8MV3jl90 WmLYQJRyNvZaNNez1ES00qLUfd8XEWEwgVFJAMeQ2whgVIJw8/B499lsIpd8uRx+o8im beHiLxsihTeo6m6OdxM6IdSJYHetY38CAQpqmCNi4vroSnK1Ew2Mb/hQyRVU2x3O5DXt cnyA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:mime-version:subject:message-id:date:cc:to; bh=mjF1aWIxCMMlge1DhPhy4j6FmNCbrCIJ032EgWgF1kg=; b=LdjPmjxrNw60QFkhdRrKTTN9Syi2/btkUSSZhTvrvLxb9UkbF0exodFM+TVr0tNM+w LLn4rG+/+YMROR7HGMyTVoMWFPRlXBNeIwv9xeHdprkqKKoPyAe92DTm4yqfM5SK+vPe nJrqvw1mL9izfRrppFJlz9+2adBDg0RJB2pCa1dHuMvXB+KhCiMlWKXsYz9ixNeJxUsf 6ytNOEkkqhR7h7uzCmZl/nfCLfYPVeDIoIT8EFQg9gCIZ9wPSXxb6zMpCFEh8z3tvY7o AIUlPI7q/vy2avTOylT9fyL2jnKJJ/T4iFiu2XD7ZLojROzTC5eBRByUqnlckhjY8tlV wEpQ==
X-Gm-Message-State: AJcUukezjX4JK02n/x9EP49PbFe1s92xEcQyT5+Ij6smnZalphBTPzer h7XKIf6s3Ho0KQ2oDZZ+OBAi3Qpj
X-Google-Smtp-Source: ALg8bN5h2lElp7fErVMTf8OZ8iRTpjRd0zc/x/vX73s53ZBb9M5NQ4+qVQ0PcqUkS4OZrnicDh53dg==
X-Received: by 2002:a63:4384:: with SMTP id q126mr23863350pga.160.1545946170134; Thu, 27 Dec 2018 13:29:30 -0800 (PST)
Received: from afv.lan (99-64-100-131.lightspeed.austtx.sbcglobal.net. [99.64.100.131]) by smtp.gmail.com with ESMTPSA id g190sm48022040pgc.28.2018.12.27.13.29.28 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Thu, 27 Dec 2018 13:29:29 -0800 (PST)
From: Adam Montville <adam.w.montville@gmail.com>
Content-Type: multipart/alternative; boundary="Apple-Mail=_E70B14CD-5504-4B42-A572-1C08A7A20FA2"
Mime-Version: 1.0 (Mac OS X Mail 12.2 \(3445.102.3\))
Message-Id: <0AE1CB07-A9CF-4821-9F1B-4FCCF53C4AA3@gmail.com>
Date: Thu, 27 Dec 2018 15:29:27 -0600
Cc: Bill Munyan <bill.munyan.ietf@gmail.com>
To: "<sacm@ietf.org>" <sacm@ietf.org>
X-Mailer: Apple Mail (2.3445.102.3)
Archived-At: <https://mailarchive.ietf.org/arch/msg/sacm/12_jtBE9iFV_AR1M8pfsLRMydsg>
Subject: [sacm] SACM Architecture Draft
X-BeenThere: sacm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: SACM WG mail list <sacm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sacm>, <mailto:sacm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sacm/>
List-Post: <mailto:sacm@ietf.org>
List-Help: <mailto:sacm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sacm>, <mailto:sacm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 27 Dec 2018 21:29:33 -0000

Dear SACM,

Happy (belated) Holidays and a Happy New Year to you!

At our recent virtual interim meeting I promised to post a note to the list regarding our architecture draft to do three things:
Request review
Indicate whether we (the authors) believe it's on the right track
Assuming 2 is good, a list of what's left to be done.
So, we're going to start with 2, move on to 3, and then end with 1...

Bill and I both believe that the architecture draft is, indeed, on the right track. Henk, and possibly others (Nancy?), have described this draft as being too solutions-specific. Section 3, "Architectural Overview" is intended to be the place in this draft to describe the abstract ideas in the architecture. Section 3.1 talks a little bit about the roles of the SACM Components, and Section 3.2 provides the known information about an XMPP-based instantiation of the architecture (note Appendix A maps this instantiation back to our SACM requirements, RFC8248). 

Assuming that we are on the right track, then here's what we think yet needs to be done:

Document specific Components, Capabilities, Interfaces, and Workflows
IT Asset Management could probably stand to be fleshed out
Vulnerability Management is reasonable documented in this draft, but may need work
Configuration management probably needs to be fleshed out as well (needs to be tied to SACM Use Cases)
Determine where to document the above (in this draft or in new drafts), which will determine how long this draft takes to complete.
Prague hackathon to continue the trend of discovering an XMPP-based solution
TODOs in the draft
Privacy Considerations
Security Considerations
Flesh out our IANA Considerations
Will likely result in additional draft work


Clearly, there's a lot to be done here, and we really need your specific, actionable feedback on this draft. Feel free to reach out here or to either of us directly.

This draft in GitHub: https://github.com/sacmwg/draft-ietf-sacm-arch <https://github.com/sacmwg/draft-ietf-sacm-arch> 

This draft on the SACM documents page: https://datatracker.ietf.org/doc/draft-ietf-sacm-arch/ <https://datatracker.ietf.org/doc/draft-ietf-sacm-arch/>


Kind regards,

Adam & Bill