On Fri, Aug 26, 2011 at 4:17 PM, Novikov, Lev <[email protected]> wrote: > I started a rewrite of draft-lanz-cicm-lm and want to discuss the use > cases we want included in the Logical Model. > > Here's a short list I've got so far: > 1. Two networks each in their own security domain (archetypal > high assurance data-in-transit case) > > 2. Traditional data-in-transit and -at-reset case (cf. PKCS#11)
I presume that you meant 'at-rest' rather than 'at-reset' here? > 3. One network with two security domains (cf. network storage; > data-in-transit and -at-rest ) > > 4. One machine with two security domains in software (cf. Vincent > Roca's slides http://www.ietf.org/proceedings/81/slides/cicm-1.pdf) > > The resulting model will be used to analyze the impact on existing > protocols where, for example, there might not be separate security > domains. > > ** Anything else to add to the use case list? What are your assumptions about crypto keys? Are you assuming that 2 parties have already met and shared keys (probably out of band)? If not, then I could see maybe use cases involving secure key exchange. However, I suspect that is considered out of scope. -kevin -- Blog: http://off-the-wall-security.blogspot.com/ "The most likely way for the world to be destroyed, most experts agree, is by accident. That's where we come in; we're computer professionals. We *cause* accidents." -- Nathaniel Borenstein _______________________________________________ cicm mailing list [email protected] https://www.ietf.org/mailman/listinfo/cicm
