Re: [Smart] New Version Notification for draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt
Tony Rutkowski <rutkowski.tony@gmail.com> Mon, 08 July 2019 18:06 UTC
Return-Path: <rutkowski.tony@gmail.com>
X-Original-To: smart@ietfa.amsl.com
Delivered-To: smart@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 61DA7120495 for <smart@ietfa.amsl.com>; Mon, 8 Jul 2019 11:06:25 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.692
X-Spam-Level:
X-Spam-Status: No, score=-0.692 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, PDS_NO_HELO_DNS=1.295, RCVD_IN_DNSWL_NONE=-0.0001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_KAM_HTML_FONT_INVALID=0.01, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hsGkZxmX1_R2 for <smart@ietfa.amsl.com>; Mon, 8 Jul 2019 11:06:23 -0700 (PDT)
Received: from mail-qt1-x829.google.com (mail-qt1-x829.google.com [IPv6:2607:f8b0:4864:20::829]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 174501203A7 for <smart@irtf.org>; Mon, 8 Jul 2019 11:06:23 -0700 (PDT)
Received: by mail-qt1-x829.google.com with SMTP id y26so6385121qto.4 for <smart@irtf.org>; Mon, 08 Jul 2019 11:06:23 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:references:from:message-id:date:user-agent:mime-version :in-reply-to:content-language; bh=OgbctmRk2s8G8XgXZzFmhA4lFYZ3R9o9VhH3BBHV4jU=; b=C0F4RqY1FdoJhpK5d4mxw71Jn+JYLBBUusrgcS0xk02IO7BiSHK7i6WdSafi1JCt5R DVMFZGEjYiuuDR1gCvlxPaFEs05kkTKkPx/ZggCrWnw1DXA8P51Ul/yZ/+qJQiESeH/J LMJffnxrukwkCs+AMPWMEY7iMILXbEN+CuUhDEYE+lrBCchW8YxHpqpdBTtPkWHaISzq fW39zwMDUzdxtUisAUU4lq/wDzezIpXYWak2+SMgYUfYsQWtJT/LSLpqlRshohJHsnwW QW/fxfbVLppq6F7B5bjX9WDRJYKUKIxP7sb5DTNS4H5xdu8vPITGh6HMihEh9KTqAzAL 2cyQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-language; bh=OgbctmRk2s8G8XgXZzFmhA4lFYZ3R9o9VhH3BBHV4jU=; b=YV8WTJcNbwZlnuuASaIQCHFCq3LD2DWDpXPB7yCKDP9WuoYRKz7yGZMF7rjEU1+9Dg kZTTUzWPzUP6Ta2oNsY1JGCnaEWx4/N2cNu4QP57pcU+2IGmGInpM4OdE7auuJ7fIugM Gbr+9QfI0z/dpxXSYFTkB3deIGoMuz+JQ77e3c1DdM54O1vAJgyi8bvuVpMf+PM8nP3x flTyKkU41Utu6AVYbl+cZl7dKtzaqCzlK6Es7EckgDN31ylQUIOA0ez4UHPbUnJMzdmX sFwSk+XvAkT6jtoh0xKmY0aOuE25LoJf1VMJX1Wm/HW1RPSwIBoHtli3KcXW8oTahFlh gBjQ==
X-Gm-Message-State: APjAAAV1wBy/TnTSLLyK472EomilHgmtsbhoh3dwPZDOpFGYfDhTluOz MQgLGZs/wX1X00ik5vdHeh8mjRjb
X-Google-Smtp-Source: APXvYqxm7OocZTUNYHIhXkyPQ9U7SehJkRPJbVlJbIt0i0msocy+NUiAiir9Y14AWb5gIpT8A0Ew2w==
X-Received: by 2002:ac8:25e7:: with SMTP id f36mr15270887qtf.139.1562609181728; Mon, 08 Jul 2019 11:06:21 -0700 (PDT)
Received: from [192.168.1.53] (pool-70-106-252-118.clppva.fios.verizon.net. [70.106.252.118]) by smtp.gmail.com with ESMTPSA id y3sm8607662qtj.46.2019.07.08.11.06.20 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Mon, 08 Jul 2019 11:06:21 -0700 (PDT)
To: mark@internetpolicyadvisors.com, smart@irtf.org
References: <156259169027.840.9135095847874577233.idtracker@ietfa.amsl.com> <019f01d53590$cf8c2a50$6ea47ef0$@internetpolicyadvisors.com> <5efde727-8e1d-9e9e-a9a4-32ce3f60e359@gmail.com> <01c301d53593$a3236c50$e96a44f0$@internetpolicyadvisors.com>
From: Tony Rutkowski <rutkowski.tony@gmail.com>
Message-ID: <89108d73-e6a0-90fd-16ba-d1bb8e6d0958@gmail.com>
Date: Mon, 08 Jul 2019 14:06:20 -0400
User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; rv:60.0) Gecko/20100101 Thunderbird/60.7.2
MIME-Version: 1.0
In-Reply-To: <01c301d53593$a3236c50$e96a44f0$@internetpolicyadvisors.com>
Content-Type: multipart/alternative; boundary="------------EE9E8DDB1FF22FB0F5ED1AD1"
Content-Language: en-US
Archived-At: <https://mailarchive.ietf.org/arch/msg/smart/20aZcdkf6YxT0pZP5DdteGDIk88>
Subject: Re: [Smart] New Version Notification for draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt
X-BeenThere: smart@irtf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Stopping Malware And Researching Threats <smart.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/smart>, <mailto:smart-request@irtf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/smart/>
List-Post: <mailto:smart@irtf.org>
List-Help: <mailto:smart-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/smart>, <mailto:smart-request@irtf.org?subject=subscribe>
X-List-Received-Date: Mon, 08 Jul 2019 18:06:33 -0000
Full Stand Alone (SA) 5G specified by Rel. 16 will consist of fully virtualised architectures orchestrated on-demand using NFV based network slicing among virtualised Network Functions. Given this reality and that the slices will be using different network protocols, including E2E Ethernet, and instantiating architectures and functions for periods of time using many different NF identifiers, it isn't clear how this comports with the typically highly rigid TCP/IP centric model. (Indeed, it isn't clear that the term "internet" has meaning.) In a 5G/NFV environment, enormously diverse Network Functions will exist all over the instantiated architectures - including on end user equipment. The interesting question is whether a taxonomy for NFs exists, and whether your draft should use the conceptualisation in the interest of accommodating 5G. It's worth noting that useful work along those lines exists out there. Some is found in NFV ISG specifications, e.g., ETSI GS NFV-IFA 014. Other material can be found at IETF meetings. See, e.g., https://www.ietf.org/proceedings/92/slides/slides-92-rtgarea-3.pdf CLESS is certainly headed in the right direction - certainly in a 5G world. --tony On 08-Jul-19 9:47 AM, mark@internetpolicyadvisors.com wrote: > > Those are pretty useful questions. I’ve gotten the same comments from > others off-list. The scoping of CLESS is something we should try to > make progress on the list. > > The 5G question is a little different for me. Do you think that 5G > introduces categories of endpoints that would not be present in > existing, or other, transport infrastructures? If so, I’m happy to > amend the text. > > Thanks, > > mark > > *From:*Tony Rutkowski <rutkowski.tony@gmail.com> > *Sent:* Monday, July 8, 2019 8:36 AM > *To:* mark@internetpolicyadvisors.com; smart@irtf.org > *Subject:* Re: [Smart] New Version Notification for > draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt > > But, there's an important question here. CLESS specifically rules > out network infrastructure in its discussion. Should the taxonomy > for CLESS incorporate endpoints that are part of the network > infrastructure? Said a different way: is network infrastructure > out of scope for CLESS? > > Do you intend this to be 5G relevant? > > -tr > > On 08-Jul-19 9:26 AM, mark@internetpolicyadvisors.com > <mailto:mark@internetpolicyadvisors.com> wrote: > > A new version of I-D, draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt > > has been successfully submitted by Mark McFadden and posted to the IETF repository. > > Name: draft-mcfadden-smart-endpoint-taxonomy-for-cless > > Revision: 00 > > Title: Endpoint Taxonomy for CLESS > > Document date: 2019-07-08 > > Group: Individual Submission > > Pages: 15 > > URL:https://www.ietf.org/internet-drafts/draft-mcfadden-smart-endpoint-taxonomy-for-cless-00.txt > > Status:https://datatracker.ietf.org/doc/draft-mcfadden-smart-endpoint-taxonomy-for-cless/ > > Htmlized:https://tools.ietf.org/html/draft-mcfadden-smart-endpoint-taxonomy-for-cless-00 > > Htmlized:https://datatracker.ietf.org/doc/html/draft-mcfadden-smart-endpoint-taxonomy-for-cless > > Abstract: > > A separate document [I-D:draft-taddei-smart-cless-introduction] > > (CLESS) attempts to establish the capabilities and limitations of > > endpoint-only security solutions and explore potential alternative > > approaches. That document discusses endpoints in general terms. It > > has been suggested that there are classes of endpoints that have > > different characteristics. Those classes may have completely > > different threat landscapes and the endpoints may have completely > > different security capabilities. In support of the work on CLESS, > > this document provides a taxonomy of endpoints that is intended to > > provide a foundation for further work on CLESS and research on > > approaches to providing endpoint security alternatives in a diverse > > group of settings. > > > > Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat >
- [Smart] New Version Notification for draft-mcfadd… mark
- Re: [Smart] New Version Notification for draft-mc… Tony Rutkowski
- Re: [Smart] New Version Notification for draft-mc… mark
- Re: [Smart] New Version Notification for draft-mc… Tony Rutkowski
- Re: [Smart] New Version Notification for draft-mc… Arnaud.Taddei.IETF