Re: [sacm] Fwd: I-D Action: draft-handt-sacm-asset-identifiers-00.txt
Gunnar Engelbach <Gunnar.Engelbach@ThreatGuard.com> Thu, 25 July 2013 17:52 UTC
Return-Path: <gunnar.engelbach@threatguard.com>
X-Original-To: sacm@ietfa.amsl.com
Delivered-To: sacm@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 84F3521F8FF8 for <sacm@ietfa.amsl.com>; Thu, 25 Jul 2013 10:52:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Uyn9XjgylYkf for <sacm@ietfa.amsl.com>; Thu, 25 Jul 2013 10:52:11 -0700 (PDT)
Received: from server.threatguard.com (server.threatguard.com [207.55.247.173]) by ietfa.amsl.com (Postfix) with ESMTP id 6D81E21F842B for <sacm@ietf.org>; Thu, 25 Jul 2013 10:52:05 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=default; d=threatguard.com; b=dKA0nYuI2ZK3kaSVp82Dr42uAGn1RWa2OhYaxqy7ccPeY8UQZ46JMQXUL4FobpPRvmruJjGD+JmJqLBjyJTLGIq56UI1+9XYwFFt52texlt/xjmCU4i9X3XUcngM13WP; h=Received:Received:Message-ID:Date:From:Organization:User-Agent:MIME-Version:To:CC:Subject:References:In-Reply-To:Content-Type:Content-Transfer-Encoding;
Received: (qmail 26780 invoked from network); 25 Jul 2013 10:50:27 -0700
Received: from h96-61-82-50.cntcnh.dsl.dynamic.tds.net (HELO ?172.16.1.22?) (96.61.82.50) by 207.55.247.241 with ESMTPSA (DHE-RSA-AES256-SHA encrypted, authenticated); 25 Jul 2013 10:50:26 -0700
Message-ID: <51F165C8.7070404@ThreatGuard.com>
Date: Thu, 25 Jul 2013 13:52:08 -0400
From: Gunnar Engelbach <Gunnar.Engelbach@ThreatGuard.com>
Organization: ThreatGuard, Inc.
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:17.0) Gecko/20130620 Thunderbird/17.0.7
MIME-Version: 1.0
To: Adam Montville <Adam.Montville@cisecurity.org>
References: <20130711165015.29939.87432.idtracker@ietfa.amsl.com> <51DEE295.3050403@ieca.com> <05BCCEB107AF88469B9F99783D47C1D6737A4F@CISEXCHANGE1.msisac.org.local>
In-Reply-To: <05BCCEB107AF88469B9F99783D47C1D6737A4F@CISEXCHANGE1.msisac.org.local>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
Cc: Sean Turner <turners@ieca.com>, "sacm@ietf.org" <sacm@ietf.org>
Subject: Re: [sacm] Fwd: I-D Action: draft-handt-sacm-asset-identifiers-00.txt
X-BeenThere: sacm@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Discussion List for IETFers interested in the Security Content Automation Protocol \(SCAP\)." <sacm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sacm>, <mailto:sacm-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/sacm>
List-Post: <mailto:sacm@ietf.org>
List-Help: <mailto:sacm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sacm>, <mailto:sacm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 25 Jul 2013 17:52:23 -0000
On 7/25/2013 1:04 PM, Adam Montville wrote: > Being the transcriber of NISTS Asset Identification standard to an I-D format (now expired), I have some questions about this proposal. First, however, I like the way this reads and flows and I enjoyed reading it, much like I enjoyed reading the alternate architecture document. > > It seems that draft-handt-sacm-asset-identifiers-00 is squarely focused on instance-level identity, identification, and identifiers. I believe, that we have several levels of "identification" requirements. We do want instance-level identification, and I believe OIDs, as proposed, could be a good solution. I believe we also want class-level identification, for which we have been considering CPE. > > For example, I may have several OIDs, one for each of a Windows Server 2008 instance, RHEL 6 instance, Windows Server 2012 instance, and Solaris 9 instance. Now, I want to find all the assets in the "Windows" class, which would be the set of two OIDs representing the WS2008 and WS2012 instances. We could leave it up to implementers to provide this type of functionality, but would it not be useful to have some standardized way to represent that class? > > An honest question: How would this propsal handle class-level identification? Or, do we collectively believe there is no such need? There is definitely a need for a class-level ID. In fact, from a SACM perspective, I'd say it's more important than an instance-level ID. --gun > > Adam > >> -----Original Message----- >> From: sacm-bounces@ietf.org [mailto:sacm-bounces@ietf.org] On Behalf Of >> Sean Turner >> Sent: Thursday, July 11, 2013 9:51 AM >> To: sacm@ietf.org >> Subject: [sacm] Fwd: I-D Action: draft-handt-sacm-asset-identifiers-00.txt >> >> More food for thought. >> >> spt >> >> -------- Original Message -------- >> Subject: I-D Action: draft-handt-sacm-asset-identifiers-00.txt >> Date: Thu, 11 Jul 2013 09:50:15 -0700 >> From: internet-drafts@ietf.org >> Reply-To: internet-drafts@ietf.org >> To: i-d-announce@ietf.org >> >> >> A New Internet-Draft is available from the on-line Internet-Drafts directories. >> >> >> Title : sacm: Asset Identifier >> Author(s) : Russ Housley >> Sean Turner >> Filename : draft-handt-sacm-asset-identifiers-00.txt >> Pages : 7 >> Date : 2013-07-11 >> >> Abstract: >> This document examines the asset identifiers available for sacm and >> it proposes that OIDs (Object Identifiers) be selected as the asset >> identifier format. >> >> >> The IETF datatracker status page for this draft is: >> https://datatracker.ietf.org/doc/draft-handt-sacm-asset-identifiers >> >> There's also a htmlized version available at: >> http://tools.ietf.org/html/draft-handt-sacm-asset-identifiers-00 >> >> >> Internet-Drafts are also available by anonymous FTP at: >> ftp://ftp.ietf.org/internet-drafts/ >> >> _______________________________________________ >> I-D-Announce mailing list >> I-D-Announce@ietf.org >> https://www.ietf.org/mailman/listinfo/i-d-announce >> Internet-Draft directories: http://www.ietf.org/shadow.html >> or ftp://ftp.ietf.org/ietf/1shadow-sites.txt >> >> >> >> _______________________________________________ >> sacm mailing list >> sacm@ietf.org >> https://www.ietf.org/mailman/listinfo/sacm >> >> ... > > This message and attachments may contain confidential information. If it appears that this message was sent to you by mistake, any retention, dissemination, distribution or copying of this message and attachments is strictly prohibited. Please notify the sender immediately and permanently delete the message and any attachments. > _______________________________________________ > sacm mailing list > sacm@ietf.org > https://www.ietf.org/mailman/listinfo/sacm >
- [sacm] Fwd: I-D Action: draft-handt-sacm-asset-id… Sean Turner
- Re: [sacm] Fwd: I-D Action: draft-handt-sacm-asse… Adam Montville
- Re: [sacm] Fwd: I-D Action: draft-handt-sacm-asse… Adam Montville
- Re: [sacm] Fwd: I-D Action: draft-handt-sacm-asse… Gunnar Engelbach
- Re: [sacm] Fwd: I-D Action: draft-handt-sacm-asse… Romascanu, Dan (Dan)
- Re: [sacm] Fwd: I-D Action: draft-handt-sacm-asse… Sean Turner
- Re: [sacm] Fwd: I-D Action: draft-handt-sacm-asse… Baker, Jon