"Need for SITP" paper at archive

[Nina Lewis <nina@ap.nisd.cam.unisys.com>]

All,

SITP (the Security Information Transfer Protocol) was originally
developed by Unisys (now renamed Paramax) for the collection of audit data 
across a network.  The current specification of SITP is in the Internet 
Drafts directory at the NIC.  Last week, the TSIG Trusted Admin working group
concluded there is a clear need for such a protocol, and began the rigorous 
review required to usher SITP through the RFC standards track.  Paramax is
nearing completion on a prototype implementation of SITP, and three other 
organizations have indicated an intention to implement it.  A precursor to
SITP has been operational at an AF site for over a year.

The need for SITP is based on the belief that no currently existing major 
protocol (i.e. SNMP or CMOT) is appropriate for network audit data 
collection and management. For this reason, a short writeup comparing the 
use of SITP, SNMP, and CMOT for audit collection in networks has been 
posted to the TSIG archive server at Loral in the netadmin subdirectory.  
An index of archive top-level contents may be obtained by sending email to:
archive-server@wdl1.wdl.loral.com with a subject line and message content
both of "send index".

And finally, there is now a SITP discussion group also kindly hosted by 
Loral.  You can be added to the SITP group mailing list by sending email to 
tsig-request@wdl1.wdl.loral.com.

Comments and questions are welcome!

Nina Lewis
(nina@cam.unisys.com)
805-987-6811 x4202