From: OPSAWG <[email protected]> on behalf of Eliot Lear <[email protected]> Sent: 02 September 2022 18:03
This addresses Tom Petch's comments. <tp> Well, mostly. I do not understand the ISO reference. The URl - 81870 - works and brings up 5962-2021 but what is 19970-2? I get no hits for it on the ISO web site. web should be https not http Tom Petch Eliot On 02.09.22 18:57, [email protected] wrote: > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > This draft is a work item of the Operations and Management Area Working Group > WG of the IETF. > > Title : Discovering and Retrieving Software Transparency > and Vulnerability Information > Authors : Eliot Lear > Scott Rose > Filename : draft-ietf-opsawg-sbom-access-07.txt > Pages : 21 > Date : 2022-09-02 > > Abstract: > To improve cybersecurity posture, automation is necessary to locate > what software is running on a device, whether that software has known > vulnerabilities, and what, if any recommendations suppliers may have. > This memo specifies a model to provide access to this information. > It may optionally be discovered through manufacturer usage > descriptions. > > > The IETF datatracker status page for this draft is: > https://datatracker.ietf.org/doc/draft-ietf-opsawg-sbom-access/ > > There is also an htmlized version available at: > https://datatracker.ietf.org/doc/html/draft-ietf-opsawg-sbom-access-07 > > A diff from the previous version is available at: > https://www.ietf.org/rfcdiff?url2=draft-ietf-opsawg-sbom-access-07 > > > Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts > > > _______________________________________________ > OPSAWG mailing list > [email protected] > https://www.ietf.org/mailman/listinfo/opsawg > _______________________________________________ OPSAWG mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsawg
