[sacm] FW: New Version Notification for draft-lin-sacm-nid-mp-security-baseline-04.txt

"Linqiushi (Jessica, CSPL)" <linqiushi@huawei.com> Mon, 22 October 2018 09:11 UTC

Return-Path: <linqiushi@huawei.com>
X-Original-To: sacm@ietfa.amsl.com
Delivered-To: sacm@ietfa.amsl.com
Received: from localhost (localhost []) by ietfa.amsl.com (Postfix) with ESMTP id A558A130E07 for <sacm@ietfa.amsl.com>; Mon, 22 Oct 2018 02:11:40 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.601
X-Spam-Status: No, score=-2.601 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id MBjR3AsnhqwL for <sacm@ietfa.amsl.com>; Mon, 22 Oct 2018 02:11:38 -0700 (PDT)
Received: from huawei.com (lhrrgout.huawei.com []) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B8738130DFF for <sacm@ietf.org>; Mon, 22 Oct 2018 02:11:34 -0700 (PDT)
Received: from LHREML710-CAH.china.huawei.com (unknown []) by Forcepoint Email with ESMTP id 6878F52BBCD45 for <sacm@ietf.org>; Mon, 22 Oct 2018 10:11:31 +0100 (IST)
Received: from DGGEML423-HUB.china.huawei.com ( by LHREML710-CAH.china.huawei.com ( with Microsoft SMTP Server (TLS) id 14.3.408.0; Mon, 22 Oct 2018 10:11:32 +0100
Received: from DGGEML510-MBS.china.huawei.com ([]) by dggeml423-hub.china.huawei.com ([]) with mapi id 14.03.0399.000; Mon, 22 Oct 2018 17:11:23 +0800
From: "Linqiushi (Jessica, CSPL)" <linqiushi@huawei.com>
To: "sacm@ietf.org" <sacm@ietf.org>
CC: "Xialiang (Frank, Network Integration Technology Research Dept)" <frank.xialiang@huawei.com>
Thread-Topic: New Version Notification for draft-lin-sacm-nid-mp-security-baseline-04.txt
Thread-Index: AdRp5y9FhoJ1dvibRwiUBwKG9kw31A==
Date: Mon, 22 Oct 2018 09:11:23 +0000
Message-ID: <E22A9D71257049438949CB43F3A093E621DC0E18@dggeml510-mbs.china.huawei.com>
Accept-Language: zh-CN, en-US
Content-Language: zh-CN
x-originating-ip: []
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Archived-At: <https://mailarchive.ietf.org/arch/msg/sacm/SzicqpnvJ1owVGg_Md6jfkWRVV8>
Subject: [sacm] FW: New Version Notification for draft-lin-sacm-nid-mp-security-baseline-04.txt
X-BeenThere: sacm@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: SACM WG mail list <sacm.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/sacm>, <mailto:sacm-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sacm/>
List-Post: <mailto:sacm@ietf.org>
List-Help: <mailto:sacm-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/sacm>, <mailto:sacm-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 22 Oct 2018 09:11:41 -0000

Hi all,

We just submit a updated version of draft-lin-sacm-nid-mp-security-baseline. The main changes are:
1. According the discussion on the mailing list, the password security policy container is modified as optional. And the data model does not try to cover legacy situations (where unsafe protocols may be used), only focuses on recommended protocols. 
2. Tailor some nodes or make some modifications to the reused parts from other drafts or RFCs, because the current available YANG modules focus on configuration and the security posture collection is different from device configuration.
3. Supplement corresponding YANG modules. (Not finished yet, will keep working on  the YANG module section.)

Your comments and suggestions are warmly welcome. :)

Best Regards,
Qiushi Lin

发件人: internet-drafts@ietf.org [mailto:internet-drafts@ietf.org] 
发送时间: 2018年10月22日 17:03
收件人: Linqiushi (Jessica, CSPL) <linqiushi@huawei.com>;; Xialiang (Frank, Network Integration Technology Research Dept) <frank.xialiang@huawei.com>;; Henk Birkholz <henk.birkholz@sit.fraunhofer.de>;; Xialiang (Frank, Network Integration Technology Research Dept) <frank.xialiang@huawei.com>;
主题: New Version Notification for draft-lin-sacm-nid-mp-security-baseline-04.txt

A new version of I-D, draft-lin-sacm-nid-mp-security-baseline-04.txt
has been successfully submitted by Qiushi Lin and posted to the IETF repository.

Name:		draft-lin-sacm-nid-mp-security-baseline
Revision:	04
Title:		The Data Model of Network Infrastructure Device Management Plane Security Baseline
Document date:	2018-10-22
Group:		Individual Submission
Pages:		56
URL:            https://www.ietf.org/internet-drafts/draft-lin-sacm-nid-mp-security-baseline-04.txt
Status:         https://datatracker.ietf.org/doc/draft-lin-sacm-nid-mp-security-baseline/
Htmlized:       https://tools.ietf.org/html/draft-lin-sacm-nid-mp-security-baseline-04
Htmlized:       https://datatracker.ietf.org/doc/html/draft-lin-sacm-nid-mp-security-baseline
Diff:           https://www.ietf.org/rfcdiff?url2=draft-lin-sacm-nid-mp-security-baseline-04

   This document provides security baseline for network device
   management plane, which is represented by YANG data model.  The
   corresponding configuration values and status values of the YANG data
   model can be transported between Security Automation and Continuous
   Monitoring (SACM) components and used for network device security
   posture assessment.


Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org.

The IETF Secretariat