Framework for Operational Security Capabilities for IP Network Infrastructure
draft-ietf-opsec-framework-05

Document Type Expired Internet-Draft (opsec WG)
Last updated 2015-10-14 (latest revision 2007-04-03)
Stream IETF
Intended RFC status (None)
Formats
Expired & archived
plain text pdf html bibtex
Stream WG state Dead WG Document
Document shepherd No shepherd assigned
IESG IESG state Expired (IESG: Dead)
Consensus Boilerplate Unknown
Telechat date
Responsible AD Ron Bonica
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at
https://www.ietf.org/archive/id/draft-ietf-opsec-framework-05.txt

Abstract

This document outlines work done and documents produced by the Operational Security Capabilities (OPSEC) Working Group. The goal of the working group is to codify knowledge gained through operational experience about feature sets that are needed to securely deploy and operate managed network elements providing transit services at the data link and IP layers. The intent is to provide clear, concise documentation of capabilities necessary for operating networks securely, to assist network operators in communicating their requirements to vendors, and to provide vendors with input that is useful for building more secure devices. The working group produced a list of capabilities appropriate for large Internet Service Provider (ISP) and Enterprise Networks. This work is intended to refine [RFC3871]. This document also provides guidance for the creation of profile documents which are lists of security features needed in specific operating environments.

Authors

George Jones (gmj@pobox.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)