I2NSF Data Model of Consumer-Facing Interface for Security Management

Document Type Expired Internet-Draft (individual)
Last updated 2017-05-04 (latest revision 2016-10-31)
Stream (None)
Intended RFC status (None)
Expired & archived
plain text pdf html bibtex
Stream Stream state (No stream defined)
Consensus Boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Expired
Telechat date
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft can be found at


This document describes a data model for security management that is based on Interface to Network Security Functions (I2NSF) by using Network Functions Virtualization (NFV). This document proposes a security management architecture based on I2NSF framework. Note that the I2NSF framework consists of I2NSF User, Security Management System (i.e., Security Controller and Developer's Management System), and NSF instances in the lowest layer of the framework. I2NSF User consists of Application Logic, Policy Updater, and Event Collector. Security Controller consists of Security Policy Manager and NSF Capability Manager. This document explains a data model to perform the missions for a security service (i.e., VoIP-VoLTE) in I2NSF security management system.


Hyoungshick Kim (hyoung@skku.edu)
Hoon Ko (skoh21@skku.edu)
Jaehoon Jeong (pauljeong@skku.edu)
Tae-Jin Ahn (taejin.ahn@kt.com)

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)