Operational Security Requirements for IP Network Infrastructure: Advanced Requirements

Document Type Expired Internet-Draft (individual in gen area)
Author George Jones 
Last updated 2015-10-14 (latest revision 2003-10-20)
Stream IETF
Intended RFC status Informational
Expired & archived
pdf htmlized (tools) htmlized bibtex
Stream WG state (None)
Document shepherd No shepherd assigned
IESG IESG state Expired (IESG: Dead)
Action Holders
Consensus Boilerplate Unknown
Telechat date
Responsible AD Steven Bellovin
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document defines a list of operational security requirements for the infrastructure of large IP networks (such as routers and switches). The goals of this document are to serve as a collection of ideas for security features that would improve operational security and to assist consumers of network equipment in communicating their security requirements to vendors. The requirements in this document are NOT considered to be best current practice (BCP). Comments to:


George Jones (gmjones@mitre.org)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)