[bmwg] Proposal - Benchmarking Methodology for Network Security Device Performance draft

bmonkman@netsecopen.org Wed, 12 August 2020 18:09 UTC

Return-Path: <bmonkman@netsecopen.org>
X-Original-To: bmwg@ietfa.amsl.com
Delivered-To: bmwg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7C48B3A14DE for <bmwg@ietfa.amsl.com>; Wed, 12 Aug 2020 11:09:52 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.898
X-Spam-Level:
X-Spam-Status: No, score=-1.898 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, HTML_MESSAGE=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=netsecopen-org.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id R6QBpPtvaGwW for <bmwg@ietfa.amsl.com>; Wed, 12 Aug 2020 11:09:50 -0700 (PDT)
Received: from mail-qv1-xf2b.google.com (mail-qv1-xf2b.google.com [IPv6:2607:f8b0:4864:20::f2b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6BEC03A14D3 for <bmwg@ietf.org>; Wed, 12 Aug 2020 11:09:50 -0700 (PDT)
Received: by mail-qv1-xf2b.google.com with SMTP id l13so1441195qvt.10 for <bmwg@ietf.org>; Wed, 12 Aug 2020 11:09:50 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=netsecopen-org.20150623.gappssmtp.com; s=20150623; h=from:to:cc:subject:date:message-id:mime-version:thread-index :content-language; bh=EUo5uUE2Zl9csLqiuBWjQUmnZqeP+zsvfNTWH2lcIuY=; b=bpdo2cdNoDUti5OgwBC+88mTPD8fOdfhJI1LQ7eXKo6G3F/Cgfpm+4uPzMd/toE2zj Y4vi0R0+TshhFACEQyu1cEGEZG9c1/qJFukiRol7Qm0B84a2917A62bt6RVGo8sRFksV d77K4d/eMvw/iHIMDpJvy0xScldgSyAISaNRXAAq+YExrWW/JcoOvop1Fr0dylJrUz3w F/AY9U/B5RsgR980Kt3//ZPHB/8D9LKQmTSFWPfrTM2t31oqPlu5eE5azsRAxpLj0dAH STRy2G/ivgLuSvM1vzrERz3/O3BGwvgKILXHY9H+FFrhbHXP0P7IhsP8v+atpCWRjFkG p3MA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:cc:subject:date:message-id:mime-version :thread-index:content-language; bh=EUo5uUE2Zl9csLqiuBWjQUmnZqeP+zsvfNTWH2lcIuY=; b=OqUiH3F6iQgU5CkWYslI+MqMgfzp0QYSlkHdEyrxPnbA/RKQ6f9C7ezlX7I9Q/wXaH zX+HTwiLh7pFkTWAMSjzwLuD8N4FkOlxo/pUqHOULKexe+4ggnqpS8kZD+mMAyH+WXmS Y5RLG2d1UaxQgGS9DjtIXWckOTHA/m+iNfUbTbmjrGxBqA/NvyE3ZK5tPzR/ycG7WM7C xdBdQTjYjO4wDXh0vtBXFnXFfmrAnRyGca+CJqtOhwsBAzypl8rr8EpFC9Cr7e0xMStr TxcnGp83r5oQD6iwP8KhmBhpgE2VePx+OAfHcRJqmO9uMqEb5mysvQrvsv72UP4y7l6B nzNA==
X-Gm-Message-State: AOAM5314ODnfXMXgYFN49uvzLVrw+olimiTUEKbLM02WsU5M047VLAGc 9h/glOSAbp20A4Nadb12F0ULOA==
X-Google-Smtp-Source: ABdhPJxJfSqUoDojyXNn8I2O9AgysVXlPaN6rWWv4oU8R+jZb9zhPE2JY0qbMuBMmpDOp+jAG3qAUA==
X-Received: by 2002:a05:6214:b34:: with SMTP id w20mr790830qvj.215.1597255789428; Wed, 12 Aug 2020 11:09:49 -0700 (PDT)
Received: from WINDOWSU6SOVGL (c-98-235-212-118.hsd1.pa.comcast.net. [98.235.212.118]) by smtp.gmail.com with ESMTPSA id g11sm3115481qke.128.2020.08.12.11.09.48 (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128); Wed, 12 Aug 2020 11:09:48 -0700 (PDT)
From: <bmonkman@netsecopen.org>
To: <bmwg@ietf.org>
Cc: "'Timothy Carlin'" <tjcarlin@iol.unh.edu>, "'Bala Balarajah'" <bala@netsecopen.org>, "'Carsten Rossenhoevel'" <cross@eantc.de>
Date: Wed, 12 Aug 2020 14:09:47 -0400
Message-ID: <00a301d670d3$c4403180$4cc09480$@netsecopen.org>
MIME-Version: 1.0
Content-Type: multipart/related; boundary="----=_NextPart_000_00A4_01D670B2.3D334C70"
X-Mailer: Microsoft Outlook 16.0
Thread-Index: AdZw05Qj3CCHyCysR3SctaivvczLLQ==
Content-Language: en-ca
Archived-At: <https://mailarchive.ietf.org/arch/msg/bmwg/poPd3MErWmAvgr-KHvO2oD2E5GQ>
Subject: [bmwg] Proposal - Benchmarking Methodology for Network Security Device Performance draft
X-BeenThere: bmwg@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Benchmarking Methodology Working Group <bmwg.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/bmwg>, <mailto:bmwg-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/bmwg/>
List-Post: <mailto:bmwg@ietf.org>
List-Help: <mailto:bmwg-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/bmwg>, <mailto:bmwg-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 12 Aug 2020 18:10:00 -0000

Folks,

 

During the IETF 108 BMWG virtual meeting Tim Carlin presented on behalf of
NetSecOPEN information on the work we have been doing. The discussion
focussed mainly on the Network IPS test requirements we are planning on
adding.

 

A comment was made that the draft was getting rather large. After some
discussion we came up with an idea. I was asked to bring it up for
discussion on this mailing list.

 

In order to move the draft forward and also to allow for continued movement
on developing security testing requirements we are proposing splitting the
draft into different parts.

 

The first part would be focussed on performance testing elements. We would
expect this to be a stable for the most part and would be ready for IESG
review soon, hopefully this month.

 

The subsequent parts would be drafts that would capture security
requirements that would be added on to the first part. For example, a draft
that would cover NGFW security requirements and a draft that would cover
Network IPS requirements. These security requirement drafts would frequently
reference the first draft and might, at times, require documentation of
where deviations of the requirements contained in the first draft would be
allowed.

 

I believe if these changes are acceptable to everyone we will have change
the title of the first draft.

 

Please let me know if anyone has an issue with this proposal.

 

Brian

 

---------

Brian Monkman

Executive Director, NetSecOPEN

Office: +1-717-610-0808 

Fax: +1-717-506-0460

Mobile: +1-717-462-5422

 



 <https://www.netsecopen.org> https://www.netsecopen.org