RE: OPSEC Working Group? Need people to do the work.

[George Jones <gmj@pobox.com>]

> IMO a customer owned system is outside scope. I am assuming this
> documents focus is NSP's not end users.
> George am I off base on this on. That assumption is based on earlier
> work and I am not certain it still applies.

Good question.   That's what the charter discussion is about.

We could set the scope anywhere from "all devices that implement IP"
down to NSP core routers only.

Around Vienna IETF I made moves towards the former.  Result was huge,
unmnanagable explosion in scope that took a couple of drafts to undo.

Perhaps a small, managable first target would be to produce a
framework that allows for larger scopes (e.g. hosts, soho...)  but
take as the first goal of the WG to simply produce BCP versions of the
same material covered in the current opsec draft (which is coming out
INFO as soon as rfc-editor gives it some cycles).  The material from
the current draft could be broken down into several smaller ones.
Once this has been hit, we can re-charter, using the same framework
scoped for different devices.

Sound like a plan ?

Thanks,
---George