[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: draft-lewis-infrastructure-security (Re: Draft Opsec WG minutes from Montreal IETF)

To: "'Ross Callon'" <rcallon@juniper.net>
Subject: RE: draft-lewis-infrastructure-security (Re: Draft Opsec WG minutes from Montreal IETF)
From: "David Harrington" <ietfdbh@comcast.net>
Date: Mon, 31 Jul 2006 17:05:05 -0400
Cc: "'Ted Seely'" <tseely@sprint.net>, <opsec@ops.ietf.org>
In-reply-to: <Pine.GSO.4.63.0607311348360.23560@sjc-cde-003.cisco.com>

Hi,

My raw personal notes from the meeting are not definitive on the
question, but certainly seem to indicate a desire by the WG to accept
the draft as a WG item. 

--
Infrastructure security presentation
Want to make networks more secure against dos 
Focus on traffic to the network rather than through the network
ACLs at the edge to prevent malicious packets

About 8 read the document.
Should it be accepted as WG doc?
RC: thinks it could be a valid doc, and comments should be addressed
before WGLC
PC: about five readers found it useful
pekka: it wasn't clear how it fits into charter
Some techniques might be contentious, such as address hiding
	Could be addressed as tradeoff analysis
	More wrok needed
Sandy Murphy, Sparta: pekka spoke but didn't mention his own draft
RC: pekka is supposed to talk
Sandy: assumptions of normal use? The GIG effort is not wired, and may
have different use cases. Assumptions about connections lead to
certain models of protection. Are we going to restrict this to
something we know and love, or include larger scope?
PC: 
Darryl lewis: everything in there is being done; wirless should have
no impact on those techniques. The cahrter seems to mention useful
operational documents.
RC: satellite issues might be additional
Ted Sealey: incredibly relevant. We could narrow the document or widen
the scope of WG. The document helps providers 
GMJ: both this and pekka's backbone attacks docs in line with current
practice.
I've sited both in the filtering doc since they are both useful
DaveKessens: if not 100% covered in charter, let's not worry too much
about that, as laong as work gets done on a timely basis.
--
 
David Harrington
dharrington@huawei.com 
dbharrington@comcast.net
ietfdbh@comcast.net


> -----Original Message-----
> From: owner-opsec@psg.com [mailto:owner-opsec@psg.com] On 
> Behalf Of Chris Lonvick
> Sent: Monday, July 31, 2006 4:52 PM
> To: Ross Callon
> Cc: Ted Seely; opsec@ops.ietf.org
> Subject: Re: draft-lewis-infrastructure-security (Re: Draft 
> Opsec WG minutes from Montreal IETF)
> 
> Hi,
> 
> On Mon, 31 Jul 2006, Ross Callon wrote:
> 
> > At 03:32 PM 7/31/2006 -0400, Ted Seely wrote:
> >
> >> Hey Ross,
> >> 
> >> Curious, wasn't there discussion to take
> >> "draft-lewis-infrastructure-security" to the list as well? 
>  Is that in the
> >> minutes as well and I just missed it?
> >> 
> >> If so, and as i said in the WG mtg, I support.
> >> 
> >> Thanks
> >> 
> >> -ted
> >
> > This is certainly an oversight. What I am not sure is 
> whether this was
> > said but we forgot to put it into the minutes (which is my vague 
> > recollection),
> > or if we forgot to say while in Montreal "we will discuss 
> this further on the
> > email list".
> 
> I don't recall one way or the other.  But this is why we have 
> a review of 
> the minutes before they are accepted.  :)  Was there anything in the

> jabber notes about this?
> 
> Thanks,
> Chris
>

References:
- Re: draft-lewis-infrastructure-security (Re: Draft Opsec WG minutes from Montreal IETF)
  - From: Chris Lonvick <clonvick@cisco.com>

Prev by Date: Re: draft-lewis-infrastructure-security (Re: Draft Opsec WG minutes from Montreal IETF)
Next by Date: Draft-cain-looging-caps-00
Previous by thread: Re: draft-lewis-infrastructure-security (Re: Draft Opsec WG minutes from Montreal IETF)
Next by thread: Re: draft-lewis-infrastructure-security (Re: Draft Opsec WG minutes from Montreal IETF)
Index(es):
- Date
- Thread