I-D Action: draft-lazanski-users-threat-model-t-02.txt
internet-drafts@ietf.org Thu, 07 January 2021 09:29 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietf.org
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id A420C3A0D50 for <i-d-announce@ietf.org>; Thu, 7 Jan 2021 01:29:29 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-lazanski-users-threat-model-t-02.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 7.24.0
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <161001176960.26463.9659175519134929142@ietfa.amsl.com>
Date: Thu, 07 Jan 2021 01:29:29 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/-2BBiQUUabVCMNaRO2yBcmCLrS4>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.29
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 07 Jan 2021 09:29:30 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories.
Title : A User-Focused Internet Threat Model
Author : Dominique Lazanski
Filename : draft-lazanski-users-threat-model-t-02.txt
Pages : 13
Date : 2021-01-07
Abstract:
RFC 3552 introduces a threat model that does not include endpoint
security. Yet increasingly protocol development is making assumptions
about endpoint security capabilities which have not been defined. RFC
3552 is 17 years old and threat landscape has changed. Security issues
and cyber attacks have increased and there are more devices, users, and
applications on the endpoint than ever. This draft proposes a new
approach to the Internet threat model which will include endpoint
security, focus on users and provide an update to the threat model in
RFC 3552. It brings together Security Considerations for Protocol
Designers draft-lazanski-protocol-sec-design-model-t-01 which is a
comprehensive document that lists threats, attack vectors, examples and
considerations for designing protocols, as well as draft-taddei-smart-
cless-introduction-02 which lays out security concerns, capabilities
and limitations for endpoints in general and draft-mcfadden-smart-
endpoint-taxonomy-for-cless-01 which outlines a clear taxonomy for
endpoint security and identifies changes in technology, economic and
protocol development that has impacted and changed endpoint security.
Taken together these drafts reflect a comprehensive and clear set of
security threats and design considerations for the Internet.
The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-lazanski-users-threat-model-t/
There are also htmlized versions available at:
https://tools.ietf.org/html/draft-lazanski-users-threat-model-t-02
https://datatracker.ietf.org/doc/html/draft-lazanski-users-threat-model-t-02
A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-lazanski-users-threat-model-t-02
Please note that it may take a couple of minutes from the time of submission
until the htmlized version and diff are available at tools.ietf.org.
Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/
- I-D Action: draft-lazanski-users-threat-model-t-0… internet-drafts