Minutes IETF104: sacm
minutes-104-sacm-00
| Meeting Minutes | Security Automation and Continuous Monitoring (sacm) WG | |
|---|---|---|
| Title | Minutes IETF104: sacm | |
| State | Active | |
| Other versions | plain text | |
| Last updated | 2019-05-08 |
minutes-104-sacm-00
Hackathon Results
Munyan
==================
Interesting work was done at the Hackathon between Carl-Heinz (using a cMAP
client/server with a graph data model) and some of the CIS pre-existing XMPP
work.
2 workflows were implemented and some interesting lessons learned were
captured:
- MAP/graph a great candidate for the results repository
- current architecture is focused on transport, should be focused on component interaction
ROLIE Software Descriptor
Banghart
draft-ietf-sacm-rolie-softwaredescriptor
(https://datatracker.ietf.org/doc/draft-ietf-sacm-rolie-softwaredescriptor/)
========================================
A new version of the document was published and is ready for WGLC.
Jess Fitzgerald-McKay and Lou Garwood will review
Architecture
Munyan
draft-ietf-sacm-arch
(https://datatracker.ietf.org/doc/draft-ietf-sacm-arch/)
=====================
Added overview diagram and established enterprise boundary
Discusion about the various data models, specifically the graph model using
in cMAP. Flexible but can grow large, allows arbitrary associations between
data/metadata.
Feedback: too focused on XMPP and needs to define interactions more, confirm
on list
Henk Birkholz and Frank Xia willing to contribute / review.
Terminology
Birkholz
draft-ietf-sacm-terminology
(https://datatracker.ietf.org/doc/draft-ietf-sacm-terminology/)
==========================
Problem trying to continuing to progress draft without progress on the
architecture draft. Too many dependencies back to architecture.
CoSWID
Waltermire
draft-ietf-sacm-coswid
(https://datatracker.ietf.org/doc/draft-ietf-sacm-coswid/)
===========================
Reduced representational complexity of media-type
- not well specified in the ISO standard
- treating as text field to link back to W3C spec and have ISO
parity
Adding more signature schemes from COSE and allowing multiple signatures.
Fixing normative language throughout.
Need to finish merging CDDL changes into draft.
New draft available end of meeting week.
Needs more review, should progress to WGLC.
Chairs would prefer to have expert review of CDDL.
EPCP
Fitzgerald-McKay
draft-ietf-sacm-ecp
(https://datatracker.ietf.org/doc/draft-ietf-sacm-ecp/)
Lots of updates from previous version to improve readability
Future reviews from Banghart, Waltermire, Munyan, Montville, Pettis
Document to be renamed EPCP.
Eric Voit to contribute more options than just NETCONF/YANG.
"Information Model"
Inacio
===================
Let's restart working on this model. Let's change tactics to focus on an
extensible minimially viable set of IE's and a system to support IE metadata
which can allow those extensions.
Henk Birkholz would prefer a more extensive "viable to pursue" set of IEs.
Virtual Interim to do week of 6-May or 20-May.