[sacm] SWIMA, data model types, and PENs
"Schmidt, Charles M." <cmschmidt@mitre.org> Wed, 18 January 2017 16:21 UTC
Return-Path: <cmschmidt@mitre.org>
X-Original-To: sacm@ietfa.amsl.com
Delivered-To: sacm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B4FA51294C8 for <sacm@ietfa.amsl.com>; Wed, 18 Jan 2017 08:21:33 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.399
X-Spam-Level:
X-Spam-Status: No, score=-7.399 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_MED=-2.3, RP_MATCHES_RCVD=-3.199] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=mitre.onmicrosoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 0fiAOJu17IUQ for <sacm@ietfa.amsl.com>; Wed, 18 Jan 2017 08:21:32 -0800 (PST)
Received: from smtpvmsrv1.mitre.org (smtpvmsrv1.mitre.org [192.52.194.136]) by ietfa.amsl.com (Postfix) with ESMTP id 0391712947D for <sacm@ietf.org>; Wed, 18 Jan 2017 08:21:31 -0800 (PST)
Received: from smtpvmsrv1.mitre.org (localhost.localdomain [127.0.0.1]) by localhost (Postfix) with SMTP id 259646DC7C0 for <sacm@ietf.org>; Wed, 18 Jan 2017 11:21:31 -0500 (EST)
Received: from imshyb02.MITRE.ORG (imshyb02.mitre.org [129.83.29.3]) by smtpvmsrv1.mitre.org (Postfix) with ESMTP id 190ED6DC7BF for <sacm@ietf.org>; Wed, 18 Jan 2017 11:21:31 -0500 (EST)
Received: from imshyb01.MITRE.ORG (129.83.29.2) by imshyb02.MITRE.ORG (129.83.29.3) with Microsoft SMTP Server (TLS) id 15.0.1263.5; Wed, 18 Jan 2017 11:21:30 -0500
Received: from gcc01-CY1-obe.outbound.protection.outlook.com (10.140.19.249) by imshyb01.MITRE.ORG (129.83.29.2) with Microsoft SMTP Server (TLS) id 15.0.1263.5 via Frontend Transport; Wed, 18 Jan 2017 11:21:30 -0500
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mitre.onmicrosoft.com; s=selector1-mitre-org; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version; bh=gE/txXeSf8YvfgKVPxigzkE5o1Tw9q6zjHNvzsCIJSY=; b=ItWhx2DM1/68PIN+sW180XK+xbLexDPgnm/vtoDZ/+qKGu4yvhyegcEjBTRCeyZ2IUhzygdAFERNvA9lgzPQ0TMNPn6hRZXxb3F57QLKXxvSPI2iKPK+H+sJ56dq6N+fKG5X+BN74dFpBgCyaTiGELwOD9UTGL6LBRFNKZ5x/hE=
Received: from CY1PR09MB0889.namprd09.prod.outlook.com (10.163.43.27) by CY1PR09MB0892.namprd09.prod.outlook.com (10.163.43.30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384_P384) id 15.1.860.13; Wed, 18 Jan 2017 16:21:29 +0000
Received: from CY1PR09MB0889.namprd09.prod.outlook.com ([10.163.43.27]) by CY1PR09MB0889.namprd09.prod.outlook.com ([10.163.43.27]) with mapi id 15.01.0860.012; Wed, 18 Jan 2017 16:21:29 +0000
From: "Schmidt, Charles M." <cmschmidt@mitre.org>
To: "<sacm@ietf.org>" <sacm@ietf.org>
Thread-Topic: SWIMA, data model types, and PENs
Thread-Index: AdJxpYHQ2xq2twPAQ+yX5j4iocLeJw==
Date: Wed, 18 Jan 2017 16:21:29 +0000
Message-ID: <CY1PR09MB0889783CBF321958BA668F96AB7F0@CY1PR09MB0889.namprd09.prod.outlook.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
authentication-results: spf=none (sender IP is ) smtp.mailfrom=cmschmidt@mitre.org;
x-originating-ip: [192.160.51.88]
x-ms-office365-filtering-correlation-id: 00e09eff-643b-41d5-940c-08d43fbe0eee
x-microsoft-antispam: UriScan:;BCL:0;PCL:0;RULEID:(22001);SRVR:CY1PR09MB0892;
x-microsoft-exchange-diagnostics: 1; CY1PR09MB0892; 7:WBC6Y7CV9+TYS/ToSgB3w1bIGrntZMLn0wIyWpmSgTKmHJVaDlhBwtuSTxCoDAYrXG67VLRmiBX7go6Ec+xB2vJCS18OZBr+4pL50BP6OM11RRCvB1yVOgzQXVjZ7FYzjZMmrWd9NaQ7Qx2/7ckW8caGw4ZGIN4lLjRrKIW7qJTw401m1WRw+SUJYhF6wrNFeEKbaQuyocCzbKs2nCUtb6vxsiAB8/nd1FbIDR4gzKBz28Qd6QOJ/RAtx6FHYd5VKDgX5iAwDlZXgDXo4sudewXV+8+ldI/P5PTSb0eHhn8MV9d6VK+nax+pRgPPXUxhVFwYtjMFsCgHbomCPeJdzUNFE9ckqTIzhJ+QN06XKbcUxaABWRw/Ucj4uIa0U4yVjOu7l2vWLUZMgKgRSJaKToosy00DMlUq8hAGg9nvLlrOcg1ukMRPZGvJ524nJVcazdRcYqDFVfUoW/vecuYPGA==
x-microsoft-antispam-prvs: <CY1PR09MB08926580204CA96CAF01A44AAB7F0@CY1PR09MB0892.namprd09.prod.outlook.com>
x-exchange-antispam-report-test: UriScan:(120809045254105)(166708455590820);
x-exchange-antispam-report-cfa-test: BCL:0; PCL:0; RULEID:(6040375)(601004)(2401047)(5005006)(8121501046)(3002001)(10201501046)(6055026)(6041248)(20161123562025)(20161123555025)(20161123564025)(20161123560025)(6072148); SRVR:CY1PR09MB0892; BCL:0; PCL:0; RULEID:; SRVR:CY1PR09MB0892;
x-forefront-prvs: 01917B1794
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(6009001)(7916002)(39450400003)(39410400002)(39840400002)(39860400002)(39850400002)(55674003)(53754006)(199003)(189002)(189998001)(107886002)(305945005)(97736004)(68736007)(7736002)(105586002)(106356001)(86362001)(92566002)(2906002)(66066001)(74316002)(7696004)(110136003)(53936002)(2900100001)(450100001)(5660300001)(122556002)(9686003)(54356999)(38730400001)(102836003)(6116002)(3846002)(6306002)(25786008)(50986999)(101416001)(6436002)(99286003)(77096006)(81166006)(81156014)(6506006)(3280700002)(3660700001)(33656002)(8936002)(8676002)(55016002)(491001); DIR:OUT; SFP:1101; SCL:1; SRVR:CY1PR09MB0892; H:CY1PR09MB0889.namprd09.prod.outlook.com; FPR:; SPF:None; PTR:InfoNoRecords; A:1; MX:1; LANG:en;
received-spf: None (protection.outlook.com: mitre.org does not designate permitted sender hosts)
spamdiagnosticoutput: 1:99
spamdiagnosticmetadata: NSPM
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-MS-Exchange-CrossTenant-originalarrivaltime: 18 Jan 2017 16:21:29.1493 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: c620dc48-1d50-4952-8b39-df4d54d74d82
X-MS-Exchange-Transport-CrossTenantHeadersStamped: CY1PR09MB0892
X-OriginatorOrg: mitre.org
Archived-At: <https://mailarchive.ietf.org/arch/msg/sacm/C0DFp0fcH3mxoZvy7Xn9UeWhc5w>
Subject: [sacm] SWIMA, data model types, and PENs
X-BeenThere: sacm@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: SACM WG mail list <sacm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sacm>, <mailto:sacm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sacm/>
List-Post: <mailto:sacm@ietf.org>
List-Help: <mailto:sacm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sacm>, <mailto:sacm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 18 Jan 2017 16:21:33 -0000
Hello all, The conversation on SWIMA last week made some good progress. Below are the main points and some open issues for discussion on-list. References to the current draft are to draft-ietf-sacm-nea-swid-patnc-00 (https://datatracker.ietf.org/doc/draft-ietf-sacm-nea-swid-patnc/). References to issue numbers are from the Software Identification GitHub tracker (https://github.com/sacmwg/software-identification). ==GitHub issue 4 - Add user/vendor-defined data model support== The new draft expands the way data models are identified. Most discussion of this procedure is in section 3.4.2. The new procedure is to use a Private Enterprise Number to allow vendors to have their own "namespace" where they define meanings for the 1-byte Data Model Type field. A PEN of 0x000000, corresponding to IANA, uses the new registry for Software Data Models (defined in section 9.4) to define meanings for the Data Model Type field. Within this registry, values of 192-255 are reserved for use by the local enterprise, allowing these enterprises to define their meaning locally. Overall, no concerns were raised with this approach on the call. However, a question was raised with regard to how PENs are conveyed in attributes: Currently, 3 bytes are reserved for the PENs. It was questioned whether this was sufficient. I did some researched and the answer is "maybe". According to section 4.3 of expired Internet Draft draft-liang-iana-pen-06 (https://datatracker.ietf.org/doc/draft-liang-iana-pen/) "Maximum value for PENs is hereby defined within 2**32-1 with 0 and 0xFFFFFF (in hex) marked as Reserved. (Note that while the original PEN definition has no upper bound, this document defines the upper bound, because some protocol make assumptions about how big PENs can be. For example, DIAMETER [RFC3588] assumes that this value is no bigger than 2**32-1.)" In short, there is no official upper bound to PENs, although there was a suggestion to bound them at 4-bytes. In the meantime, as of this morning, the largest allocated PEN is 0xC082, so a bit over 3/4 of the way to filling 2 bytes. The PEN and Data Model Type field are sent with every record or record identifier transmitted, so these fields get repeated a lot. So two questions: 1) Do people agree with the new procedure for supporting data model types as managed by vendors, local enterprises, and IANA? 2) Do people agree with continuing to use 3 bytes for representing PENs in attributes? Thanks, Charles
- [sacm] SWIMA, data model types, and PENs Schmidt, Charles M.