[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [T1S1SEC] IETF activities on security requirements

To: "Susana Sabater (ML/EEM)" <susana.sabater@ericsson.com>
Subject: RE: [T1S1SEC] IETF activities on security requirements
From: George M Jones <gmjones@mitre.org>
Date: 07 Nov 2003 09:16:28 -0500
Cc: t1s1sec@t1.org, opsec@ops.ietf.org
In-reply-to: <8C1856C372A7574291A56C3B7000A7AEC5C758@eestqnt104>
Organization:
References: <8C1856C372A7574291A56C3B7000A7AEC5C758@eestqnt104>

On Fri, 2003-11-07 at 08:23, Susana Sabater (ML/EEM) wrote:
> Hi,
> 
> Chip, what is the status of the individual submissions (drafts-jones...) you refer to below? Are they close to be wg items?
> I don't think we should consider IETF individual submissions at this stage.
> 
> As a first step, I'd rather propose collecting the inputs/areas we want to look at.

Current status is: the're as "baked" as I think I can/should make them.
The've had input from NANOG, RIPE/EOF, and the IETF communities, as well
as varios ISPs/NSPs.

I met with 3 of the 4 IETF Area Directors (Security, Ops) at NANOG.
In matters of process, I defer completely to their judgement.
The consensus there was to have the Securtiy Area Advisory Group
(SAAG) do a final vetting of them and then go to 4 week BCP last call.

The -info draft is less "baked" and contains mostly things that we'd
like to see as BCP but can not honestly be called that now....I think
it may make sense for that one to remain a draft or at most go out
as an info.

I will be @ IETF next week if anyone wants to discuss and will be 
@ the SAAG meeting Thursday.  Of course, email also works.

Thanks,
---George Jones



> 
> Cheers,
> /Susana
> 
>  
> -----Original Message-----
> From: owner-t1s1sec@t1.org [mailto:owner-t1s1sec@t1.org]On Behalf Of
> Chip Sharp
> Sent: viernes, 07 de noviembre de 2003 4:24
> To: t1s1sec@t1.org
> Subject: [T1S1SEC] IETF activities on security requirements
> 
> 
> FYI,
> Below are some new drafts & activities in IETF on security related matters.  This is not exhaustive, but is intended to provide an idea of some of the work areas.
> 
> The IAB is developing an Informational RFC on Security Mechanisms:
> "Security Mechanisms for the Internet"
> http://www.ietf.org/internet-drafts/draft-iab-secmech-03.txt
> 
> 
> The opsec group is developing a couple of I-Ds on operational security of IP Networks:
> 
> "Operational Security Requirements for IP Network Infrastructure:
> Advanced Requirements"
> http://www.ietf.org/internet-drafts/draft-jones-opsec-info-00.txt
> 
> "Operational Security Requirements for IP Network Infrastructure:
> Best-Current-Practices"
> http://www.ietf.org/internet-drafts/draft-jones-opsec-02.txt
> Routing Protocol Security Requirements Working Group
> http://www.ietf.org/html.charters/rpsec-charter.html
> 
> "Generic Threats to Routing Protocols"
> http://www.ietf.org/internet-drafts/draft-ietf-rpsec-routing-threats-03.txt
> 
> Agenda for next week's rpsec meeting:
> http://www.ietf.org/ietf/03nov/rpsec.txt
> 
> 
> l3vpn wg:
> "Security Framework for Provider Provisioned Virtual Private Networks"
> http://www.ietf.org/internet-drafts/draft-ietf-l3vpn-security-framework-00.txt
> 
> 
> 
> ---------------------------------------------------
> Chip Sharp                  Consulting Engineering
> Cisco Systems        
> tel:+1.919.392.3121     
> --------------------------------------------------- 
>

Prev by Date: Re: More BCP: revenge of RS232 and CLIs
Next by Date: changes for -03
Previous by thread: Heavily revised in -02: OoB network interface for mgt
Next by thread: changes for -03
Index(es):
- Date
- Thread