[I2nsf] Fwd: New Version Notification for draft-nir-i2nsf-ipsec-dc-prof-00.txt
Hi. The below is a private submission by myself of a profile for using the protocol in sdn-ipsec-flow to protect internal traffic within the data center. A few notes: This is *not* a working group draft I am not at this point asking for adoption, and I won’t at least until the sdn-ipsec-flow document is past IESG processing. The intended status is Informational, as is common for profiles Comments are welcome. Yoav (firmly with no hats) > Begin forwarded message: > > From: internet-dra...@ietf.org > Subject: New Version Notification for draft-nir-i2nsf-ipsec-dc-prof-00.txt > Date: 23 July 2019 at 23:25:52 GMT-4 > To: "Yoav Nir" > > > A new version of I-D, draft-nir-i2nsf-ipsec-dc-prof-00.txt > has been successfully submitted by Yoav Nir and posted to the > IETF repository. > > Name: draft-nir-i2nsf-ipsec-dc-prof > Revision: 00 > Title:A Data Center Profile for Software Defined Networking > (SDN)-based IPsec > Document date:2019-07-22 > Group:Individual Submission > Pages:10 > URL: > https://www.ietf.org/internet-drafts/draft-nir-i2nsf-ipsec-dc-prof-00.txt > Status: > https://datatracker.ietf.org/doc/draft-nir-i2nsf-ipsec-dc-prof/ > Htmlized: https://tools.ietf.org/html/draft-nir-i2nsf-ipsec-dc-prof-00 > Htmlized: > https://datatracker.ietf.org/doc/html/draft-nir-i2nsf-ipsec-dc-prof > > > Abstract: > This document presents two profiles for configuring IPsec within a > data center using an SDN controller and the YANG model described in > the sdn-ipsec draft. > > Two profiles are described to allow both the IKE and IKE-less cases > because some data centers may be required to use a standardized > method of key exchange rather than SDN. > > > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > ___ I2nsf mailing list I2nsf@ietf.org https://www.ietf.org/mailman/listinfo/i2nsf
[I2nsf] I-D Action: draft-ietf-i2nsf-applicability-15.txt
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Interface to Network Security Functions WG of the IETF. Title : Applicability of Interfaces to Network Security Functions to Network-Based Security Services Authors : Jaehoon Paul Jeong Sangwon Hyun Tae-Jin Ahn Susan Hares Diego R. Lopez Filename: draft-ietf-i2nsf-applicability-15.txt Pages : 24 Date: 2019-07-24 Abstract: This document describes the applicability of Interface to Network Security Functions (I2NSF) to network-based security services in Network Functions Virtualization (NFV) environments, such as firewall, deep packet inspection, or attack mitigation engines. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-i2nsf-applicability/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-i2nsf-applicability-15 https://datatracker.ietf.org/doc/html/draft-ietf-i2nsf-applicability-15 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-i2nsf-applicability-15 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ ___ I2nsf mailing list I2nsf@ietf.org https://www.ietf.org/mailman/listinfo/i2nsf
[I2nsf] I-D Action: draft-ietf-i2nsf-registration-interface-dm-05.txt
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Interface to Network Security Functions WG of the IETF. Title : I2NSF Registration Interface YANG Data Model Authors : Sangwon Hyun Jaehoon Paul Jeong Taekyun Roh Sarang Wi Jung-Soo Park Filename: draft-ietf-i2nsf-registration-interface-dm-05.txt Pages : 34 Date: 2019-07-24 Abstract: This document defines an information model and a YANG data model for Registration Interface between Security Controller and Developer's Management System (DMS) in the Interface to Network Security Functions (I2NSF) framework to register Network Security Functions (NSF) of the DMS into the Security Controller. The objective of these information and data models is to support NSF capability registration and query via I2NSF Registration Interface. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-i2nsf-registration-interface-dm/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-i2nsf-registration-interface-dm-05 https://datatracker.ietf.org/doc/html/draft-ietf-i2nsf-registration-interface-dm-05 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-i2nsf-registration-interface-dm-05 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ ___ I2nsf mailing list I2nsf@ietf.org https://www.ietf.org/mailman/listinfo/i2nsf
[I2nsf] I-D Action: draft-ietf-i2nsf-consumer-facing-interface-dm-06.txt
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Interface to Network Security Functions WG of the IETF. Title : I2NSF Consumer-Facing Interface YANG Data Model Authors : Jaehoon Paul Jeong Eunsoo Kim Tae-Jin Ahn Rakesh Kumar Susan Hares Filename: draft-ietf-i2nsf-consumer-facing-interface-dm-06.txt Pages : 62 Date: 2019-07-24 Abstract: This document describes an information model and a YANG data model for the Consumer-Facing Interface between an Interface to Network Security Functions (I2NSF) User and Security Controller in an I2NSF system in a Network Functions Virtualization (NFV) environment. The information model defines various types of managed objects and the relationship among them needed to build the interface. The information model is organized based on the "Event-Condition-Action" (ECA) policy model defined by a capability information model for I2NSF [i2nsf-capability-im], and the data model is defined for enabling different users of a given I2NSF system to define, manage, and monitor security policies for specific flows within an administrative domain. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-i2nsf-consumer-facing-interface-dm/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-i2nsf-consumer-facing-interface-dm-06 https://datatracker.ietf.org/doc/html/draft-ietf-i2nsf-consumer-facing-interface-dm-06 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-i2nsf-consumer-facing-interface-dm-06 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ ___ I2nsf mailing list I2nsf@ietf.org https://www.ietf.org/mailman/listinfo/i2nsf
[I2nsf] I-D Action: draft-ietf-i2nsf-nsf-monitoring-data-model-01.txt
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Interface to Network Security Functions WG of the IETF. Title : I2NSF NSF Monitoring YANG Data Model Authors : Jaehoon Paul Jeong Chaehong Chung Susan Hares Liang Xia (Frank) Henk Birkholz Filename: draft-ietf-i2nsf-nsf-monitoring-data-model-01.txt Pages : 78 Date: 2019-07-24 Abstract: This document describes an information model and the corresponding YANG data model for monitoring Network Security Functions (NSFs) in the Interface to Network Security Functions (I2NSF) framework. If the monitoring of NSFs is performed in a comprehensive way, it is possible to detect malicious activity, anomalous behavior, and the potential sign of denial of service attacks in a timely manner. This monitoring functionality is based on the monitoring information that is generated by NSFs. Thus, this document describes not only an information model for monitoring NSFs along with a YANG data diagram, but also the corresponding YANG data model for monitoring NSFs. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-i2nsf-nsf-monitoring-data-model/ There are also htmlized versions available at: https://tools.ietf.org/html/draft-ietf-i2nsf-nsf-monitoring-data-model-01 https://datatracker.ietf.org/doc/html/draft-ietf-i2nsf-nsf-monitoring-data-model-01 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-i2nsf-nsf-monitoring-data-model-01 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ ___ I2nsf mailing list I2nsf@ietf.org https://www.ietf.org/mailman/listinfo/i2nsf