draft-ietf-sacm-rolie-softwaredescriptor-04.txt   draft-ietf-sacm-rolie-softwaredescriptor-05.txt 
SACM Working Group S. Banghart SACM Working Group S. Banghart
Internet-Draft D. Waltermire Internet-Draft D. Waltermire
Intended status: InformationalNational Institute of Standards and Techno Intended status: InformationalNational Institute of Standards and Techno
Expires: September 27, 2019 March 26, 2019 Expires: September 27, 2019 March 26, 2019
Definition of the ROLIE Software Descriptor Extension Definition of the ROLIE Software Descriptor Extension
draft-ietf-sacm-rolie-softwaredescriptor-04 draft-ietf-sacm-rolie-softwaredescriptor-05
Abstract Abstract
This document uses the "information-type" extension point as defined This document uses the "information-type" extension point as defined
in the Resource-Oriented Lightweight Information Exchange (ROLIE) in the Resource-Oriented Lightweight Information Exchange (ROLIE)
[RFC8322] Section 7.1.2 to better support Software Record and [RFC8322] Section 7.1.2 to better support Software Record and
Software Inventory use cases. This specification registers a new Software Inventory use cases. This specification registers a new
ROLIE information-type, "software-descriptor", that allows for the ROLIE information-type, "software-descriptor", that allows for the
categorization of information relevant to software description categorization of information relevant to software description
activities and formats. In particular, the usage of the ISO activities and formats. In particular, the usage of the ISO
skipping to change at page 4, line 29 skipping to change at page 4, line 29
19770-2:2015 SWID Tag format, or expressed in proprietary enterprise 19770-2:2015 SWID Tag format, or expressed in proprietary enterprise
databases, attempts to provide as much data about this software as databases, attempts to provide as much data about this software as
possible. possible.
Once this information is expressed, it needs to be stored and shared Once this information is expressed, it needs to be stored and shared
to internal and external parties. ROLIE provides a mechanism to to internal and external parties. ROLIE provides a mechanism to
handle this sharing in an automation-friendly way. handle this sharing in an automation-friendly way.
4. The "software-descriptor" information type 4. The "software-descriptor" information type
When an "atom:category" element has the scheme When an "atom:category" element has a "scheme" attribute equal to
"urn:ietf:params:rolie:category:information-type", the value is "urn:ietf:params:rolie:category:information-type", the "value"
considered to be the information type of the associated resource. attribute defines the information type of the associated resource. A
The new information type value "software-descriptor", is described in new information type value: "software-descriptor", is described in
this section, and registered in Section 8.1. this section, and registered in Section 8.1.
The "software-descriptor" information type represents any static The "software-descriptor" information type represents any static
information that describes a piece of software. This document uses information that describes a piece of software. This document uses
the definition of software provided by [RFC4949]. Note that as per the definition of software provided by [RFC4949]. Note that as per
this definition, this information type pertains to static software, this definition, this information type pertains to static software,
that is, code on the disc. The "software-descriptor" information that is, code on the disc. The "software-descriptor" information
type is intended to provide a category for information that does one type is intended to provide a category for information that does one
or more of the following: or more of the following:
skipping to change at page 7, line 28 skipping to change at page 7, line 28
Feed it is contained in. For a standalone Entry, this is provided Feed it is contained in. For a standalone Entry, this is provided
by an "atom:category" element. by an "atom:category" element.
o The document linked to by the "href" attribute of the o The document linked to by the "href" attribute of the
"atom:content" element is a 2015 SWID Tag as per ISO/IEC "atom:content" element is a 2015 SWID Tag as per ISO/IEC
19770-2:2015. 19770-2:2015.
A "SWID Tag Entry" MUST conform to the following requirements: A "SWID Tag Entry" MUST conform to the following requirements:
o The value of the "type" attribute of the "atom:content" element o The value of the "type" attribute of the "atom:content" element
MUST be "application/swid2015+xml"[TODO]. MUST be "application/xml".
o There MUST be one "rolie:property" with the "name" attribute equal o There MUST be one "rolie:property" with the "name" attribute equal
to "urn:ietf:params:rolie:property:content-id" and the "value" to "urn:ietf:params:rolie:property:content-id" and the "value"
attribute exactly equal to the "<tagid>" element in the attached attribute exactly equal to the "<tagid>" element in the attached
SWID Tag. This allows for ROLIE consumers to more easily search SWID Tag. This allows for ROLIE consumers to more easily search
for SWID tags without needing to download the tag itself. for SWID tags without needing to download the tag itself.
o There MUST be one "rolie:property" with the "name" attribute equal o There MUST be one "rolie:property" with the "name" attribute equal
to "urn:ietf:params:rolie:property:swd:swname", and the "value" to "urn:ietf:params:rolie:property:swd:swname", and the "value"
attribute equal to the value of the "<name>" element in the attribute equal to the value of the "<name>" element in the
 End of changes. 3 change blocks. 
6 lines changed or deleted 6 lines changed or added

This html diff was produced by rfcdiff 1.47. The latest version is available from http://tools.ietf.org/tools/rfcdiff/