<font size=2 face="sans-serif">Dear Peter,</font>
<br><font size=2 face="sans-serif"> I
am extremely reluctant to accept your condition about adding the term "unspecified"
in front of "management system".</font>
<br>
<br><font size=2 face="sans-serif">First of all Craig motivated the non
addition of this term in his WinWord comment stating <</font><font size=2 face="Times New Roman">Using
the word 'unspecified' for management in section 6.1 is not consistent
with the language used with the SLP BBs. Each of the four standards
(SDLS, TC, TM, AOS) contains a statement in section 1.2 where the absence
of specification for the management activities is stated. Otherwise,
the word 'unspecified' does not show up a single time in TC, TM and AOS
BBs. </font>
<br><font size=2 face="Times New Roman">The WG prefers to be consistent
with the SLP books, and proposes not to add the word 'unspecified' here.</font><font size=2 face="sans-serif">></font>
<br>
<br><font size=2 face="sans-serif">Moreover if we accept this trend than
each CCSDS document will need to add the term unspecified in front of whatever
is not specified in that document or outside.</font>
<br><font size=2 face="sans-serif">It is also not fully true that the management
is unspecified, actually chapter 6 itself contains a number of requirement
(not all requirements, indeed) to be used when specifying the (agency specific)
management system.</font>
<br><font size=2 face="sans-serif">Last but not l;east, CCSDS never specifies
systems but rather provide standards to be used for a subset (sometimes
large) of the systems specification to be issued by a given Agency/Company.</font>
<br>
<br><font size=2 face="sans-serif">So I do recommend keeping consistency
within the documents of the SLS Area and not adding the term "unspecified"
in front of "management system" and I kindly ask you to withdraw
this specific condition.</font>
<br>
<br><font size=2 face="sans-serif">Best regards</font>
<br>
<br><font size=2 face="sans-serif">Gian Paolo</font>
<br>
<br>
<br>
<br><font size=1 color=#5f5f5f face="sans-serif">From:
</font><font size=1 face="sans-serif">"Shames, Peter
M (312B)" <peter.m.shames@jpl.nasa.gov></font>
<br><font size=1 color=#5f5f5f face="sans-serif">To:
</font><font size=1 face="sans-serif">"Biggerstaff,
Craig (JSC-CD221)[LOCKHEED MARTIN CORP]" <craig.biggerstaff@nasa.gov>,
"Scott, Keith L (9730-Affiliate)" <kscott@mitre.org>, "tomaso.decola@dlr.de"
<tomaso.decola@dlr.de>, </font>
<br><font size=1 color=#5f5f5f face="sans-serif">Cc:
</font><font size=1 face="sans-serif">"howie.weiss@sparta.com"
<howie.weiss@sparta.com>, "cesg@mailman.ccsds.org" <cesg@mailman.ccsds.org></font>
<br><font size=1 color=#5f5f5f face="sans-serif">Date:
</font><font size=1 face="sans-serif">28/08/2015 02:48</font>
<br><font size=1 color=#5f5f5f face="sans-serif">Subject:
</font><font size=1 face="sans-serif">[CESG] Re: Results
of CESG Polls closing 14 August 2015</font>
<br><font size=1 color=#5f5f5f face="sans-serif">Sent by:
</font><font size=1 face="sans-serif">cesg-bounces@mailman.ccsds.org</font>
<br>
<hr noshade>
<br>
<br>
<br><font size=2 face="Calibri">Dear Craig, et al,</font>
<br>
<br><font size=2 face="Calibri">I have reviewed the proposed changes to
the document. I find all of them acceptable except for one. I
really believe that this document will better represent its functions if
a new, simplified, version of "figure 6-1” is included in sec 2.2.2.
This would allow you to introduce in a graphical way exactly what
this protocol does relative to the three space data link protocols.
You can then point to the protocol specific versions as you have.</font>
<br>
<br><font size=3 face="Calibri">And on pg 6-1, sec 6.1 there was a side
note about the "management system” being unspecified. I propose
changing the text to read "</font><font size=3 face="Times New Roman">Through
the use of an out of band and unspecified management system…"</font>
<br>
<br><font size=2 face="Calibri">I think that gets the flavor of what you
are describing. Would you agree?</font>
<br>
<br><font size=2 face="Calibri">There is this further loose end having
to do with the “still in work” </font><font size=3 face="Times New Roman">CCSDS
SDLS Extended Procedures recommendation (reference 355.1-B). </font><font size=3>It
is mentioned twice in the document in NOTE and overview text. Since
it is not final this is probably appropriate. Tom Gannett will probably
have an opinion about this, but I think you could insert a reference to
the Red Book in the non normative references and mark it as [Future}. We
did that on the SCCS-ARD and no one screamed, and it at least gets a clear
reference to the “to be published” standard into the document.</font>
<br>
<br><font size=3>Best regards, Peter</font>
<br>
<br>
<br>
<br><font size=2 face="Calibri"><b>From: </b>"Biggerstaff, Craig (JSC-CD221)[LOCKHEED
MARTIN CORP]" <</font><a href=mailto:craig.biggerstaff@nasa.gov><font size=2 color=blue face="Calibri"><u>craig.biggerstaff@nasa.gov</u></font></a><font size=2 face="Calibri">><b><br>
Date: </b>Thursday, August 27, 2015 at 4:16 PM<b><br>
To: </b>Peter Shames <</font><a href=mailto:peter.m.shames@jpl.nasa.gov><font size=2 color=blue face="Calibri"><u>peter.m.shames@jpl.nasa.gov</u></font></a><font size=2 face="Calibri">>,
Keith Scott <</font><a href=mailto:kscott@mitre.org><font size=2 color=blue face="Calibri"><u>kscott@mitre.org</u></font></a><font size=2 face="Calibri">>,
"</font><a href=mailto:tomaso.decola@dlr.de><font size=2 color=blue face="Calibri"><u>tomaso.decola@dlr.de</u></font></a><font size=2 face="Calibri">"
<</font><a href=mailto:tomaso.decola@dlr.de><font size=2 color=blue face="Calibri"><u>tomaso.decola@dlr.de</u></font></a><font size=2 face="Calibri">><b><br>
Cc: </b>CCSDS Engineering Steering Group - CESG Exec <</font><a href=mailto:cesg@mailman.ccsds.org><font size=2 color=blue face="Calibri"><u>cesg@mailman.ccsds.org</u></font></a><font size=2 face="Calibri">>,
Gilles Moury <</font><a href=mailto:Gilles.Moury@cnes.fr><font size=2 color=blue face="Calibri"><u>Gilles.Moury@cnes.fr</u></font></a><font size=2 face="Calibri">>,
"</font><a href=mailto:howie.weiss@sparta.com><font size=2 color=blue face="Calibri"><u>howie.weiss@sparta.com</u></font></a><font size=2 face="Calibri">"
<</font><a href=mailto:howie.weiss@sparta.com><font size=2 color=blue face="Calibri"><u>howie.weiss@sparta.com</u></font></a><font size=2 face="Calibri">><b><br>
Subject: </b>RE: Results of CESG Polls closing 14 August 2015</font>
<br>
<br><font size=2 face="Calibri">Dear ADs/DADs,</font>
<br>
<br><font size=2 face="Calibri">As the book editor of CCSDS 355.1-B-0 'Space
Data Link Security Protocol', I have attached proposed text changes that,
the WG believes, will resolve your CESG poll conditions. Please review
these changes and let me know if the changes answer your requirements.
Thank you.</font>
<br>
<br>
<br>
<br><font size=2 face="Calibri">Best regards,</font>
<br>
<br><font size=2 face="Calibri">Craig Biggerstaff</font>
<br>
<br><font size=2 face="Calibri">At 03:37 PM 8/17/2015, CCSDS Secretariat
wrote:</font>
<br><font size=2 face="Calibri">CESG E-Poll Identifier: CESG-P-2015-07-001
Approval to publish CCSDS</font>
<br><font size=2 face="Calibri">355.0-B-1, Space Data Link Security Protocol
(Blue Book, Issue 1)</font>
<br><font size=2 face="Calibri">Results of CESG poll beginning 31 July
2015 and ending 14 August 2015:</font>
<br>
<br><font size=2 face="Calibri">
Abstain: 0 (0%)</font>
<br><font size=2 face="Calibri"> Approve Unconditionally: 6
(66.67%) (Merri, Behal, Calzolari,</font>
<br><font size=2 face="Calibri">Moury, Suess, Barton)</font>
<br><font size=2 face="Calibri"> Approve with Conditions: 3
(33.33%) (Shames, Scott, Cola)</font>
<br><font size=2 face="Calibri"> Disapprove with Comment: 0
(0%)</font>
<br>
<br><font size=2 face="Calibri">CONDITIONS/COMMENTS:</font>
<br>
<br><font size=2 face="Calibri">Peter Shames (Approve with Conditions):
We need this document to be</font>
<br><font size=2 face="Calibri">published, and soon, but there are still
a few inconsistencies that</font>
<br><font size=2 face="Calibri">I believe should be fixed before that happens.
There are marked in</font>
<br><font size=2 face="Calibri">the attached text, but I will summarize
them here:</font>
<br>
<br><font size=2 face="Calibri">1) The document is missing a really good
overview description and</font>
<br><font size=2 face="Calibri">figure showing the relationship of the
user provided transfer frame</font>
<br><font size=2 face="Calibri">data field to the secured field. Such figures
are in docs like CCSDS 232x0b.</font>
<br>
<br><font size=2 face="Calibri">What you are asking for was originally
in the SDLS Red Book but was moved to the TC/TM/AOS Pink Books. The
WG would prefer to reference those books instead of duplicating the overview
information.</font>
<br>
<br>
<br><font size=2 face="Calibri">2) related to 1), the term "payload"
is defined in sec 1.6, but it</font>
<br><font size=2 face="Calibri">is then not used in any consistent way
within the rest of the</font>
<br><font size=2 face="Calibri">document. And the definition of the word
"payload" is disjoint from</font>
<br><font size=2 face="Calibri">other CCSDS usage. The word "package"
or "user provided data" might be better.</font>
<br>
<br><font size=2 face="Calibri">The use of "Payload" in this
document follows its common use within cryptography. Its meaning
within the context of this document has been defined in 1.8, and it is
now capitalized as a proper name throughout. The WG believes this
will clear up any confusion.</font>
<br>
<br>
<br><font size=2 face="Calibri">3) The Security Association Management
Service, sec 3.4, reads like</font>
<br><font size=2 face="Calibri">Green Book material, not Blue Book. There
is not even an abstract</font>
<br><font size=2 face="Calibri">service spec provided and as such it appears
to be non-normative</font>
<br><font size=2 face="Calibri">content. The related "Primitives"
are not even sketched out, which</font>
<br><font size=2 face="Calibri">makes this section look even more "unfinished".</font>
<br>
<br><font size=2 face="Calibri">The WG's consensus was that specifying
only the required Security Association managed parameters was sufficient
for 355.0, which the WG wanted to keep 'lightweight'. The WG did
originally consider a set of service primitives covering SA management,
but decided that including them in the 355.0 core protocol would unduly
constrain operations centers to a particular state model for operational
key changes and recovery from spacecraft failures, where is not now any
consensus to reverse agency-specific approaches. Those subjects were
deemed material for the Green Book or else for the SDLS Extended Procedures
Blue Book.</font>
<br>
<br>
<br><font size=2 face="Calibri">4) There is a repeated description of "Rollover
of the sequence</font>
<br><font size=2 face="Calibri">number could be used to signal the end
of the acceptable lifetime of</font>
<br><font size=2 face="Calibri">a cryptographic key", which sounds
like specific guidance, but</font>
<br><font size=2 face="Calibri">always appears in a NOTE. This might be
better expressed in a real</font>
<br><font size=2 face="Calibri">requirement as a "may".</font>
<br>
<br><font size=2 face="Calibri">The NOTEs have been modified to eliminate
any guidance and to refer to the GB.</font>
<br>
<br>
<br><font size=2 face="Calibri">Keith Scott (Approve with Conditions):
I concur with Tomaso that a</font>
<br><font size=2 face="Calibri">note stating the non-applicability of this
specification to</font>
<br><font size=2 face="Calibri">Proximity-2 communications would be quite
helpful.</font>
<br>
<br><font size=2 face="Calibri">Tomaso de Cola (Approve with Conditions):
As the book relates to</font>
<br><font size=2 face="Calibri">security implemented in the data link layer
of CCSDS protocol stack,</font>
<br><font size=2 face="Calibri">I would expect a note or comment in Section
1 to state that the</font>
<br><font size=2 face="Calibri">scope of the book is limited to AOS, TM,
and TC and does not address</font>
<br><font size=2 face="Calibri">Proximity. Finding no mention of proximity
leaves some uncertainty</font>
<br><font size=2 face="Calibri">on the overall security implementation
in SDLP.</font>
<br>
<br><font size=2 face="Calibri">A statement to this effect has been added
to paragraph 2.1.</font>
<br>
<br>
<br>
<br><font size=2 face="Calibri">Note for future book amendments, the green
book CCSDS 350.0-G-2 (THE</font>
<br><font size=2 face="Calibri">APPLICATION OF CCSDS PROTOCOLS</font>
<br><font size=2 face="Calibri">TO SECURE SYSTEMS ) will probably require
some minor revision to</font>
<br><font size=2 face="Calibri">reflect the changes provided in this blue
book, once published.</font>
<br>
<br>
<br><font size=2 face="Calibri">Total Respondents: 9</font>
<br><font size=2 face="Calibri">No response was received from the following
Area(s):</font>
<br>
<br><font size=2 face="Calibri">CSS</font>
<br>
<br><font size=2 face="Calibri">SECRETARIAT INTERPRETATION OF RESULTS:
Approved with Conditions</font>
<br><font size=2 face="Calibri">PROPOSED SECRETARIAT ACTION:
Generate CMC poll after</font>
<br><font size=2 face="Calibri">conditions have been addressed</font>
<br><tt><font size=2>_______________________________________________<br>
CESG mailing list<br>
CESG@mailman.ccsds.org<br>
</font></tt><a href=http://mailman.ccsds.org/mailman/listinfo/cesg><tt><font size=2>http://mailman.ccsds.org/mailman/listinfo/cesg</font></tt></a><tt><font size=2><br>
</font></tt>
<br><PRE>This message and any attachments are intended for the use of the addressee or addressees only.
The unauthorised disclosure, use, dissemination or copying (either in whole or in part) of its
content is not permitted.
If you received this message in error, please notify the sender and delete it from your system.
Emails can be altered and their integrity cannot be guaranteed by the sender.
Please consider the environment before printing this email.
</PRE>