I-D Action: draft-lazanski-users-threat-model-t-05.txt
internet-drafts@ietf.org Sun, 03 July 2022 12:40 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: i-d-announce@ietf.org
Delivered-To: i-d-announce@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id DEE58C15C120 for <i-d-announce@ietf.org>; Sun, 3 Jul 2022 05:40:02 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Subject: I-D Action: draft-lazanski-users-threat-model-t-05.txt
X-Test-IDTracker: no
X-IETF-IDTracker: 8.5.1
Auto-Submitted: auto-generated
Precedence: bulk
Message-ID: <165685200290.11656.3104079683919141451@ietfa.amsl.com>
Date: Sun, 03 Jul 2022 05:40:02 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/i-d-announce/snCR44lkS0TD1TgX5GMOYdAg6Co>
X-BeenThere: i-d-announce@ietf.org
X-Mailman-Version: 2.1.39
List-Id: Internet Draft Announcements only <i-d-announce.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i-d-announce/>
List-Post: <mailto:i-d-announce@ietf.org>
List-Help: <mailto:i-d-announce-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i-d-announce>, <mailto:i-d-announce-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 03 Jul 2022 12:40:03 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : A User-Focused Internet Threat Model Author : Dominique Lazanski Filename : draft-lazanski-users-threat-model-t-05.txt Pages : 13 Date : 2022-07-03 Abstract: RFC 3552 introduces a threat model that does not include endpoint security. Yet increasingly protocol development is making assumptions about endpoint security capabilities which have not been defined. RFC 3552 is 17 years old and threat landscape has changed. Security issues and cyber attacks have increased and there are more devices, users, and applications on the endpoint than ever. This draft proposes a new approach to the Internet threat model which will include endpoint security, focus on users and provide an update to the threat model in RFC 3552. It brings together Security Considerations for Protocol Designers draft-lazanski-protocol-sec-design-model-t-05 which is a comprehensive document that lists threats, attack vectors, examples and considerations for designing protocols, as well as draft-taddei-smart- cless-introduction-03 which lays out security concerns, capabilities and limitations for endpoints in general and draft-mcfadden-smart- endpoint-taxonomy-for-cless-02 which outlines a clear taxonomy for endpoint security and identifies changes in technology, economic and protocol development that has impacted and changed endpoint security. Taken together these drafts reflect a comprehensive and clear set of security threats and design considerations for the Internet. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-lazanski-users-threat-model-t/ There is also an htmlized version available at: https://datatracker.ietf.org/doc/html/draft-lazanski-users-threat-model-t-05 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-lazanski-users-threat-model-t-05 Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
- I-D Action: draft-lazanski-users-threat-model-t-0… internet-drafts