[I2nsf] some comments to draft-ietf-i2nsf-client-facing-interface-req
Yuhei Hayashi <hayashi.yuhei@lab.ntt.co.jp> Mon, 19 February 2018 05:37 UTC
Return-Path: <hayashi.yuhei@lab.ntt.co.jp>
X-Original-To: i2nsf@ietfa.amsl.com
Delivered-To: i2nsf@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 1EE151270FC for <i2nsf@ietfa.amsl.com>; Sun, 18 Feb 2018 21:37:31 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.712
X-Spam-Level:
X-Spam-Status: No, score=-0.712 tagged_above=-999 required=5 tests=[BAYES_40=-0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id DbstZDAAJOGk for <i2nsf@ietfa.amsl.com>; Sun, 18 Feb 2018 21:37:29 -0800 (PST)
Received: from tama500.ecl.ntt.co.jp (tama500.ecl.ntt.co.jp [129.60.39.148]) by ietfa.amsl.com (Postfix) with ESMTP id F36EF1201FA for <i2nsf@ietf.org>; Sun, 18 Feb 2018 21:37:28 -0800 (PST)
Received: from vc1.ecl.ntt.co.jp (vc1.ecl.ntt.co.jp [129.60.86.153]) by tama500.ecl.ntt.co.jp (8.13.8/8.13.8) with ESMTP id w1J5bLcR013860; Mon, 19 Feb 2018 14:37:21 +0900
Received: from vc1.ecl.ntt.co.jp (localhost [127.0.0.1]) by vc1.ecl.ntt.co.jp (Postfix) with ESMTP id 70945EA7CFC; Mon, 19 Feb 2018 14:37:21 +0900 (JST)
Received: from jcms-pop21.ecl.ntt.co.jp (jcms-pop21.ecl.ntt.co.jp [129.60.87.134]) by vc1.ecl.ntt.co.jp (Postfix) with ESMTP id 62A97EA7D4D; Mon, 19 Feb 2018 14:37:21 +0900 (JST)
Received: from [IPv6:::1] (unknown [129.60.13.46]) by jcms-pop21.ecl.ntt.co.jp (Postfix) with ESMTPSA id 572DE40036A; Mon, 19 Feb 2018 14:37:21 +0900 (JST)
From: Yuhei Hayashi <hayashi.yuhei@lab.ntt.co.jp>
Message-ID: <bcad052a-b1c5-a626-b02f-5bb3e79275c1@lab.ntt.co.jp>
Date: Mon, 19 Feb 2018 14:36:54 +0900
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:52.0) Gecko/20100101 Thunderbird/52.6.0
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"; format="flowed"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-CC-Mail-RelayStamp: 1
To: linda.dunbar@huawei.com, i2nsf@ietf.org
Cc: "neshi-nwsec@lab.ntt.co.jp" <neshi-nwsec@lab.ntt.co.jp>
X-TM-AS-MML: disable
Archived-At: <https://mailarchive.ietf.org/arch/msg/i2nsf/42CtzB8nPl_zU-4d12pvcpyq4AQ>
Subject: [I2nsf] some comments to draft-ietf-i2nsf-client-facing-interface-req
X-BeenThere: i2nsf@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "*I2NSF: Interface to Network Security Functions mailing list*" <i2nsf.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/i2nsf/>
List-Post: <mailto:i2nsf@ietf.org>
List-Help: <mailto:i2nsf-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/i2nsf>, <mailto:i2nsf-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Feb 2018 05:37:31 -0000
Linda, I read the draft. https://datatracker.ietf.org/doc/draft-ietf-i2nsf-client-facing-interface-req/ We will provide some comments from the point of view of our network security automation use case. # Our team especially studies about security operation automation between controller and NSF, not between user and controller. So we want to provide only general comments. - About Basic rules for Client-Facing Interface definition Vendor-independence is very important thing for carrier NW's operation. We think independence of NSF's version is important too. We think it's problem that client-facing interface depends on NSF's version. If client-facing interface depends on NSF's version, it means I2NSF RESTful API depends on NSF's version. So it means automation program which uses the API has to be changed at every version up. - About attack traffic transport We consider that network security operators want to analyze attack traffic by using appropriate NSFs, so network should transport attack traffic to the NSFs easily. We think it's important thing that client-facing interface enables network security operator to do so easily. Yuhei ----------------------------------------- Nippon Telegraph and Telephone Corporation Network Service Systems Laboratories Transport Service Systems Development Project Transport Service Platform Innovation Project Yuhei Hayashi 0422-59-3485 hayashi.yuhei@lab.ntt.co.jp
- [I2nsf] some comments to draft-ietf-i2nsf-client-… Yuhei Hayashi