Minutes from the Sept 2, 2020 Telecon

4 views
Skip to first unread message

Charles Schmidt

unread,
Sep 2, 2020, 4:55:55 PM9/2/20
to scap-dev-endpoint
Hi all,

Below are my notes from today's telecon. Comments and corrections are welcome.

Thanks,
Charles

====================

Attending: Stephen Banghart (NIST), Dave Kemp (DOD), Dan Haynes (MITRE), Danny Martinez (HII-TSD), Charles Schmidt (MITRE), Joe Sain (MITRE)


OCA

-          Charles reported that MITRE is working to get the prototype code released to OCA. This should be a formality but may take a few weeks.

-          Charles noted that there will be an OCA webinar on September 22 where he will speak briefly about the SCAP prototype effort.


SCAP Prototype Progress

-          Danny H. briefed updated slides on the prototype. Dave K. indicated that the revised slides clarify the issues that he had with the previous slides and will allow him to make progress looking at potential data models and OpenC2.

-          The prototype code supports most of the targeting functionality, including getting potential assessment targets from Collectors/PCXs, storing these in the Repository, having the Manager gather applicable targets (using fake applicability data), and tasking Collectors based on the applicable target list.

-          Danny H. noted that he will alter the design so the Query flow presented in the slides will go directly between the Application and the Repository without having the Manager sit in the middle.

-          The group was asked what should be fleshed out next.

o   Jessica suggested that we should check with OCA to get their priorities. Charles said he would reach out to Jason Keirstead and Adam M. and ask them.

o   Jessica also suggested asking OpenC2 for priorities. Dave K. noted that OpenC2 would primarily be interested in the Application, so fleshing out its interfaces would be their priority. He noted that the fact that all fields are identified is a start, but the next step would be to make sure that all fields conveyed some information, even if they didn't include full functionality. This would allow OpenC2 modeling to progress, even as these fields were further fleshed out.

-          It was noted that the Repository doesn't actually employ a database. Charles noted that there will be an SCAP Repository interface that will serve as a front-end and handle the nuanced differences between an applicability check, a Collector search, searches for prior results, and straightforward queries. Dave K. noted that fleshing out these details would be useful for understanding the Repository role, even if there never is a real database in the prototype.


SCAP v2 Workshop

-          Stephen asked for topics to discuss at the workshop.

o   David K. said he could talk a bit about "What is OpenC2" and then get into some more detailed technical discussions of how it could be used in SCAP.

o   Charles said that he could spend about an hour discussing the Architecture.

-          Stephen said he would poll the mailing list for other topics.


========== ACTION ITEMS ==============

Charles – reach out to OCA representatives (Adam M. and Jason K.) to see if they have recommendations for priorities for the next SCAP prototype implementation focus.

Stephen – ping the mailing list for other topics for the workshop.

David K. – Confirm expected time of the OpenC2 technical presentation. (20 minutes was the initial estimate.)

Danny H. – Continue prototype development.

Reply all
Reply to author
Forward
0 new messages