attachment-0001
<div dir="ltr"><div><div><div><div><div>Hi,<br><br></div>Good news about HCD-TNC.<br clear="all"><br></div>Dr. Andreas Steffen at HSR (in Switzerland) had completed a prototype<br></div>implementation, including multiple PA subtypes (i.e., Printer MIB subunits).<br><br></div>All - please take a look at the code and release notes. We'll talk more about <br>this prototype effort in two weeks at our August PWG F2F.<br><br></div><div>Cheers,<br></div><div>- Ira<br><br><br></div><div><div><div><div><div><div><div><div class="gmail_signature"><div dir="ltr">Ira McDonald (Musician / Software Architect)<br>Co-Chair - TCG Trusted Mobility Solutions WG<br>Chair - Linux Foundation Open Printing WG<br>Secretary - IEEE-ISTO Printer Working Group<br>Co-Chair - IEEE-ISTO PWG Internet Printing Protocol WG<br>IETF Designated Expert - IPP & Printer MIB<br>Blue Roof Music / High North Inc<br><a style="color:rgb(51,51,255)" href="http://sites.google.com/site/blueroofmusic" target="_blank">http://sites.google.com/site/blueroofmusic</a><br><a style="color:rgb(102,0,204)" href="http://sites.google.com/site/highnorthinc" target="_blank">http://sites.google.com/site/highnorthinc</a><br>mailto: <a href="mailto:blueroofmusic@gmail.com" target="_blank">blueroofmusic@gmail.com</a><br>Winter 579 Park Place Saline, MI 48176 734-944-0094<br>Summer PO Box 221 Grand Marais, MI 49839 906-494-2434<br><br><div style="display:inline"></div><div style="display:inline"></div><div style="display:inline"></div><div></div><div></div><div></div><div></div></div></div></div>
<br><div class="gmail_quote">---------- Forwarded message ----------<br>From: <b class="gmail_sendername">Andreas Steffen</b> <span dir="ltr"><<a href="mailto:andreas.steffen@hsr.ch">andreas.steffen@hsr.ch</a>></span><br>Date: Sun, Jul 26, 2015 at 7:13 AM<br>Subject: Re: Query about prototype of IEEE-ISTO PWG Hardcopy Device Health AssessmentTNC Binding<br>To: Ira McDonald <<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a>><br><br><br>Hi Ira,<br>
<br>
I've just completed a prototype implementing the latest PWG HCD-TNC<br>
spec including support of multiple PA subtypes. You can find the<br>
[partially] commented configuration and log files of the<br>
tnccs-20-hcd-eap example scenario using a HCD IMC/IMV pair under<br>
the link<br>
<br>
<a href="https://wiki.strongswan.org/projects/strongswan/wiki/TrustedNetworkConnect#Hardcopy-Device-Health-Assessment" rel="noreferrer" target="_blank">https://wiki.strongswan.org/projects/strongswan/wiki/TrustedNetworkConnect#Hardcopy-Device-Health-Assessment</a><br>
<br>
If you need a walkthrough through the architecture of the prototype<br>
and or the test results then we can arrange a telco sometime next<br>
week.<br>
<br>
Currently the source code of the prototype is kept in a separate<br>
branch on the strongSwan git server<br>
<br>
<a href="https://git.strongswan.org/?p=strongswan.git;a=shortlog;h=refs/heads/pwg-hcd-tnc" rel="noreferrer" target="_blank">https://git.strongswan.org/?p=strongswan.git;a=shortlog;h=refs/heads/pwg-hcd-tnc</a><br>
<br>
Best regards<br>
<br>
Andreas<br>
<span class=""><br>
On 07/02/2015 05:21 PM, Ira McDonald wrote:<br>
> Hi Dr. Steffen,<br>
><br>
> Just a reminder that we (PWG) would like to hear back from you when<br>
> you get a chance about a refined cost estimate for a prototype of our<br>
> HCD-TNC spec.<br>
><br>
> Also, whatever form of RFP (from us) or simply a Proposal (from you).<br>
> The less superfluous paperwork, the better for all of us.<br>
><br>
> Cheers,<br>
> - Ira (PWG Secretary)<br>
><br>
><br>
> Ira McDonald (Musician / Software Architect)<br>
> Co-Chair - TCG Trusted Mobility Solutions WG<br>
> Chair - Linux Foundation Open Printing WG<br>
> Secretary - IEEE-ISTO Printer Working Group<br>
> Co-Chair - IEEE-ISTO PWG Internet Printing Protocol WG<br>
> IETF Designated Expert - IPP & Printer MIB<br>
> Blue Roof Music / High North Inc<br>
> <a href="http://sites.google.com/site/blueroofmusic" rel="noreferrer" target="_blank">http://sites.google.com/site/blueroofmusic</a><br>
</span>> <a href="http://sites.google.com/site/highnorthinc" rel="noreferrer" target="_blank">http://sites.google.com/site/highnorthinc</a><br>
> mailto: <a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a> <mailto:<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a>><br>
> Winter 579 Park Place Saline, MI 48176 <a href="tel:734-944-0094" value="+17349440094">734-944-0094</a><br>
> Summer PO Box 221 Grand Marais, MI 49839 <a href="tel:906-494-2434" value="+19064942434">906-494-2434</a><br>
<span class="">><br>
><br>
> On Mon, Jun 8, 2015 at 7:06 PM, Ira McDonald <<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a><br>
> <mailto:<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a>>> wrote:<br>
><br>
> Hello Dr. Steffen,<br>
><br>
> Here is a link to the HCD TNC draft (with change bars) where I<br>
> attempted<br>
> to address all of your comments:<br>
><br>
> <a href="http://ftp.pwg.org/pub/pwg/ids/wd/wd-idstnc10-20150530-rev.pdf" rel="noreferrer" target="_blank">http://ftp.pwg.org/pub/pwg/ids/wd/wd-idstnc10-20150530-rev.pdf</a><br>
><br>
</span><span class="">> That draft was reviewed last Monday by the PWG IDS WG - so I just sent<br>
> another HCD TNC draft (with change bars) where I attempted to address<br>
> all of the IDS WG member comments and discussion:<br>
><br>
> <a href="http://ftp.pwg.org/pub/pwg/ids/wd/wd-idstnc10-20150608-rev.pdf" rel="noreferrer" target="_blank">http://ftp.pwg.org/pub/pwg/ids/wd/wd-idstnc10-20150608-rev.pdf</a><br>
><br>
</span><span class="">> Note especially that, by IDS WG consensus, I added a series of<br>
> HCD-specific<br>
> PA subtypes that map one-to-one to all of the components of an HCD<br>
> defined<br>
> in the abstract model in the PWG Imaging System State and Counter<br>
> MIB v2:<br>
><br>
><br>
> <a href="http://ftp.pwg.org/pub/pwg/candidates/cs-wimscountmib20-20080318-5106.3.pdf" rel="noreferrer" target="_blank">http://ftp.pwg.org/pub/pwg/candidates/cs-wimscountmib20-20080318-5106.3.pdf</a><br>
><br>
><br>
</span><div><div class="h5">> <a href="http://ftp.pwg.org/pub/pwg/candidates/cs-wimscountmib20-20080318-5106.3.mib" rel="noreferrer" target="_blank">http://ftp.pwg.org/pub/pwg/candidates/cs-wimscountmib20-20080318-5106.3.mib</a><br>
><br>
> IDS WG members strongly feel that firmware for the System (main board),<br>
> Console, Finisher, Interface, Marker, and Scanner components should be<br>
> labeled with the relevant HCD component type (since each of these major<br>
> components typically has a unique boot ROM, a unique OS, and a unique<br>
> firmware image - also each of these major components are typically built<br>
> by different suppliers).<br>
><br>
> I realize that the TCG face-to-face meeting in Edinburgh will be<br>
> next week,<br>
> but please take a look at the change logs and redlines in these two<br>
> versions<br>
> at your convenience.<br>
><br>
> PWG Steering Committee members are unanimously in favor of proceeding<br>
> with our discussion of a strongSWAN prototype effort and refinement<br>
> of your<br>
> original cost estimate (we do realize that we just made it a bit<br>
> more complex,<br>
> although in practice a single HCD IMV should normally be sufficient - an<br>
> exception might be for high-end Finishers built by third parties).<br>
><br>
> Cheers,<br>
> - Ira (IEEE-ISTO PWG Secretary, HCD TNC Binding editor)<br>
><br>
> Ira McDonald (Musician / Software Architect)<br>
> Co-Chair - TCG Trusted Mobility Solutions WG<br>
> Chair - Linux Foundation Open Printing WG<br>
> Secretary - IEEE-ISTO Printer Working Group<br>
> Co-Chair - IEEE-ISTO PWG Internet Printing Protocol WG<br>
> IETF Designated Expert - IPP & Printer MIB<br>
> Blue Roof Music / High North Inc<br>
> <a href="http://sites.google.com/site/blueroofmusic" rel="noreferrer" target="_blank">http://sites.google.com/site/blueroofmusic</a><br>
</div></div>> <a href="http://sites.google.com/site/highnorthinc" rel="noreferrer" target="_blank">http://sites.google.com/site/highnorthinc</a><br>
> mailto: <a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a> <mailto:<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a>><br>
> Winter 579 Park Place Saline, MI 48176 <a href="tel:734-944-0094" value="+17349440094">734-944-0094</a><br>
> <tel:<a href="tel:734-944-0094" value="+17349440094">734-944-0094</a>><br>
> Summer PO Box 221 Grand Marais, MI 49839 <a href="tel:906-494-2434" value="+19064942434">906-494-2434</a><br>
> <tel:<a href="tel:906-494-2434" value="+19064942434">906-494-2434</a>><br>
<span class="">><br>
><br>
> On Mon, May 18, 2015 at 9:22 PM, Ira McDonald<br>
</span><span class="">> <<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a> <mailto:<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a>>> wrote:<br>
><br>
> Hi Andreas,<br>
><br>
> More background:<br>
><br>
> There are NO implementations of this HCD TNC Binding in any real<br>
> printer.<br>
><br>
> The PWG Process 3.0 requires that, when aworking draft has<br>
> reached the<br>
> "Prototype" draft state, then it MUST be prototyped (at some<br>
> level) by at<br>
> least one vendor before the document can advance to a "Stable"<br>
> draft state<br>
> and pass on through WG last call, then PWG last call, and<br>
> finally PWG formal<br>
> vote for a PWG Candidate Standard (published).<br>
><br>
> <a href="http://ftp.pwg.org/pub/pwg/general/pwg-process-30.pdf" rel="noreferrer" target="_blank">http://ftp.pwg.org/pub/pwg/general/pwg-process-30.pdf</a><br>
><br>
</span><span class="">> The point of asking for your help for a prototype is to get this<br>
> document<br>
> moving forward again on the PWG standards process.<br>
><br>
> You already found several discrepancies (I'll take them to the<br>
> IDS WG for<br>
> review and updated text). Unfortunately, I can't choose to<br>
> restructure the<br>
> Firmware/ResidentApplication/UserApplication* tuples into single<br>
> attributes.<br>
> Note that IETF NEA did not do so for the similar attributes<br>
> either (our main<br>
> source for structure).<br>
><br>
> I look forward to your further thoughts and reply.<br>
><br>
> Cheers,<br>
> - Ira<br>
><br>
> Ira McDonald (Musician / Software Architect)<br>
> Co-Chair - TCG Trusted Mobility Solutions WG<br>
> Chair - Linux Foundation Open Printing WG<br>
> Secretary - IEEE-ISTO Printer Working Group<br>
> Co-Chair - IEEE-ISTO PWG Internet Printing Protocol WG<br>
> IETF Designated Expert - IPP & Printer MIB<br>
> Blue Roof Music / High North Inc<br>
> <a href="http://sites.google.com/site/blueroofmusic" rel="noreferrer" target="_blank">http://sites.google.com/site/blueroofmusic</a><br>
</span>> <a href="http://sites.google.com/site/highnorthinc" rel="noreferrer" target="_blank">http://sites.google.com/site/highnorthinc</a><br>
> mailto: <a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a> <mailto:<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a>><br>
> Winter 579 Park Place Saline, MI 48176 <a href="tel:734-944-0094" value="+17349440094">734-944-0094</a><br>
> <tel:<a href="tel:734-944-0094" value="+17349440094">734-944-0094</a>><br>
> Summer PO Box 221 Grand Marais, MI 49839 <a href="tel:906-494-2434" value="+19064942434">906-494-2434</a><br>
> <tel:<a href="tel:906-494-2434" value="+19064942434">906-494-2434</a>><br>
<span class="">><br>
><br>
> On Sun, May 17, 2015 at 2:05 PM, Andreas Steffen<br>
</span><span class="">> <<a href="mailto:andreas.steffen@hsr.ch">andreas.steffen@hsr.ch</a> <mailto:<a href="mailto:andreas.steffen@hsr.ch">andreas.steffen@hsr.ch</a>>> wrote:<br>
><br>
> Hi Ira,<br>
><br>
> I think 2'000 USD should be sufficient to fund the<br>
> implementation of<br>
> the PWG HCD PA-TNC attributes and to build a demo HCD<br>
> IMC/IMV pair<br>
> since the structure of the attributes types is quite simple.<br>
><br>
> Concerning the PWG HCD Health Assessment TNC Binding draft I<br>
> have<br>
> the following remarks/questions:<br>
><br>
> - The attribute type 0x50 (23) of the TimeSource attribute<br>
> is wrong.<br>
> 0x50 (80) has been assigned to ResidentApplicationName.<br>
> The correct<br>
> attribute type of TimeSource probably is 0x32 (50).<br>
><br>
><br>
> <ira> Thanks for catching the TimeSource typo. Actually the<br>
> decimal value of '23'<br>
> is correct and the hex value of '0x50' is wrong and should be<br>
> '0x17' per this<br>
> table of assigned values from the Imaging Device Security WG:<br>
><br>
> <a href="http://ftp.pwg.org/pub/pwg/ids/wd/ids-attributes-2012-04-20.txt" rel="noreferrer" target="_blank">http://ftp.pwg.org/pub/pwg/ids/wd/ids-attributes-2012-04-20.txt</a><br>
><br>
><br>
</span><div><div class="h5">> - How is the 128 bit binary blob of the *Version attributes<br>
> to be<br>
> interpreted? The draft says that it MAY conform to section<br>
> 4.2.3<br>
> “Numeric Version” of IETF PA-TNC [RFC5792]:<br>
><br>
><br>
> <ira> The version block is opaque and (per Lexmark and Ricoh input)<br>
> was not standardized (i.e., you can't interpret it, any more<br>
> than you can<br>
> interpret the equivalent NEA attribute). You just do a binary<br>
> compare for<br>
> equality. Not my choice, because the PWG model spec (whose link<br>
> I also<br>
> sent is authoritative but ambiguous).<br>
><br>
> * 1 2<br>
> 3<br>
> * 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7<br>
> 8 9 0 1<br>
> *<br>
> +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+<br>
> * | Major Version Number<br>
> |<br>
> *<br>
> +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+<br>
> * | Minor Version Number<br>
> |<br>
> *<br>
> +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+<br>
> * | Build Number<br>
> |<br>
> *<br>
> +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+<br>
> * | Service Pack Major | Service Pack<br>
> Minor |<br>
> *<br>
> +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+<br>
><br>
> If another representation is chosen by a printer vendor then<br>
> interoperability will be very difficult. Shall the demo<br>
> implementation just do a hex dump of the 128 bit blob?<br>
><br>
><br>
> <ira> Yes - pure 128-bit dump.<br>
><br>
><br>
><br>
> - Section 5.4 Correlated Attributes (Name, Patches,<br>
> StringVersion,<br>
> Version) has a note saying: Each ordered set of Correlated<br>
> Attributes<br>
> MUST include an empty string if there is no known value<br>
> for one of<br>
> the Correlated Attributes. This cannot be true for the Version<br>
> attribute because it has a fixed size of 16 bytes. It<br>
> would make<br>
> sense to set the 128 bit binary blob to all zeroes.<br>
><br>
><br>
> <ira> Agreed - this is a bug in this binding and the PWG model spec.<br>
> This will take some grief to fix (PWG Process to adopt an errata of<br>
> the model spec). Yes, zero's would be appropriate for the<br>
> fixed-length<br>
> attributes. I'll raise the issue in the IDS WG.<br>
><br>
><br>
> - Because of the Correlated Attributes requirement it would<br>
> make much<br>
> more sense to pack Name, Patches, StringVersion and<br>
> Version into<br>
> a single attribute. The reason this isn't done is probably<br>
> due to<br>
> the size restrictions of PT-EAP transport. I'd like to<br>
> mention that<br>
> all strongSwan IMCs and IMVs support the IF-M Segmentation<br>
> Specification proposal being drafted by the TNC Endpoint<br>
> Compliance<br>
> Subgroup which allows to transfer huge attributes<br>
> (>100'000 kB) in<br>
> chunks as small as several hundred bytes over<br>
> size-restricted PB-TNC<br>
> batches.<br>
><br>
><br>
> <ira> The PWG model spec was adopted years earlier - we CANNOT<br>
> make any such structural changes at this point to defined<br>
> attributes<br>
> (because as SEPARATE attributes they're already in the approved<br>
> parallel PWG MS-NAP Binding).<br>
><br>
><br>
> - For the demo it would be helpful to have some real-world<br>
> examples<br>
> taken from actual printers for all of the 25 PWG HCD<br>
> attribute types.<br>
><br>
><br>
> <ira> There are NO real-world examples or implementations. See my<br>
> note above.<br>
><br>
><br>
> Best regards<br>
><br>
> Andreas<br>
><br>
> On 05/15/2015 08:50 PM, Ira McDonald wrote:<br>
> > Hi Andreas,<br>
> ><br>
> > We spoke several years ago at a TCG face-to-face meeting about your<br>
> > wonderful open<br>
> > source TNC protocol stack.<br>
> ><br>
> > Two weeks ago, I attended the annual joint meeting of IEEE-ISTO Printer<br>
> > Working roup<br>
> > (I'm the Secretary) and Linux Foundation Open Printing<br>
> Summit (I'm the<br>
> > Chair), where we<br>
> > reviewed minor editorial changes to a work-in-progress PWG<br>
> Hardcopy<br>
> > Device Health<br>
> > Assessment TNC Binding spec which has been waiting in<br>
> Prototype Draft<br>
> > state for awhile.<br>
> ><br>
> > <a href="http://ftp.pwg.org/pub/pwg/ids/wd/wd-idstnc10-20150419.pdf" rel="noreferrer" target="_blank">http://ftp.pwg.org/pub/pwg/ids/wd/wd-idstnc10-20150419.pdf</a><br>
> ><br>
> ><br>
> ><br>
</div></div><div><div class="h5">> <a href="http://ftp.pwg.org/pub/pwg/candidates/cs-idsattributes11-20140529-5110.1.pdf" rel="noreferrer" target="_blank">http://ftp.pwg.org/pub/pwg/candidates/cs-idsattributes11-20140529-5110.1.pdf</a><br>
> ><br>
> > Mike Sweet (Apple, PWG Chair) suggested that I ask if you<br>
> would be<br>
> > interested in PWG<br>
> > funding for a graduate student to use your TNC stack and<br>
> do a desktop<br>
> > prototype (not<br>
> > hosted in an actual printer) of these 20+ PWG extension<br>
> health attributes.<br>
> ><br>
> > If you are interested, would you take a quick look at our<br>
> spec and think<br>
> > about what kind<br>
> > of funding level would be appropriate to build a desktop<br>
> prototype of a<br>
> > "printer" reporting<br>
> > its own health attributes as a TNC Client.<br>
> ><br>
> > Cheers,<br>
> > - Ira (PWG Secretary, IPP WG Co-Chair, HCD-TNC Editor)<br>
> ><br>
> ><br>
> > Ira McDonald (Musician / Software Architect)<br>
> > Co-Chair - TCG Trusted Mobility Solutions WG<br>
> > Chair - Linux Foundation Open Printing WG<br>
> > Secretary - IEEE-ISTO Printer Working Group<br>
> > Co-Chair - IEEE-ISTO PWG Internet Printing Protocol WG<br>
> > IETF Designated Expert - IPP & Printer MIB<br>
> > Blue Roof Music / High North Inc<br>
> > <a href="http://sites.google.com/site/blueroofmusic" rel="noreferrer" target="_blank">http://sites.google.com/site/blueroofmusic</a><br>
</div></div><span class="">> > <a href="http://sites.google.com/site/highnorthinc" rel="noreferrer" target="_blank">http://sites.google.com/site/highnorthinc</a><br>
> > mailto: <a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a><br>
> <mailto:<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a>><br>
</span>> <mailto:<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a><br>
> <mailto:<a href="mailto:blueroofmusic@gmail.com">blueroofmusic@gmail.com</a>>><br>
> > Winter 579 Park Place Saline, MI 48176 <a href="tel:734-944-0094" value="+17349440094">734-944-0094</a><br>
> <tel:<a href="tel:734-944-0094" value="+17349440094">734-944-0094</a>><br>
> > Summer PO Box 221 Grand Marais, MI 49839 906-494-2434<br>
> <tel:906-494-2434><br>
<span class="">> ><br>
><br>
> --<br>
> ======================================================================<br>
> Andreas Steffen e-mail:<br>
</span>> <a href="mailto:andreas.steffen@hsr.ch">andreas.steffen@hsr.ch</a> <mailto:<a href="mailto:andreas.steffen@hsr.ch">andreas.steffen@hsr.ch</a>><br>
<span class="">> Institute for Internet Technologies and Applications<br>
</span>> Hochschule fuer Technik Rapperswil phone: +41 55 222<br>
> 42 68 <tel:%2B41%2055%20222%2042%2068><br>
> CH-8640 Rapperswil (Switzerland) mobile: +41 76 340<br>
> 25 56 <tel:%2B41%2076%20340%2025%2056><br>
> ===========================================================[ITA-HSR]==<br>
><br>
><br>
><br>
><br>
<br>
--<br>
======================================================================<br>
Andreas Steffen e-mail: <a href="mailto:andreas.steffen@hsr.ch">andreas.steffen@hsr.ch</a><br>
<span class="">Institute for Internet Technologies and Applications<br>
</span>Hochschule fuer Technik Rapperswil phone: +41 55 222 42 68<br>
CH-8640 Rapperswil (Switzerland) mobile: +41 76 340 25 56<br>
===========================================================[ITA-HSR]==<br>
<br>
</div><br></div></div></div></div></div></div></div>