Evolution of Endpoint Security - A Taxonomy for Endpoints
draft-mcfadden-opsec-endp-taxonomy-00
|
Document |
Type |
|
Active Internet-Draft (individual)
|
|
Author |
|
Mark McFadden
|
|
Last updated |
|
2021-02-14
|
|
Stream |
|
(None)
|
|
Intended RFC status |
|
(None)
|
|
Formats |
|
plain text
pdf
htmlized (tools)
htmlized
bibtex
|
Stream |
Stream state |
|
(No stream defined) |
|
Consensus Boilerplate |
|
Unknown
|
|
RFC Editor Note |
|
(None)
|
IESG |
IESG state |
|
I-D Exists
|
|
Telechat date |
|
|
|
Responsible AD |
|
(None)
|
|
Send notices to |
|
(None)
|
Individual Submission M McFadden
Internet Draft internet policy advisors ltd
Intended status: Informational February 14, 2021
Expires: August 14, 2021
Evolution of Endpoint Security - A Taxonomy for Endpoints
draft-mcfadden-opsec-endp-taxonomy-00
Status of this Memo
This Internet-Draft is submitted in full conformance with the
provisions of BCP 78 and BCP 79.
Internet-Drafts are working documents of the Internet Engineering
Task Force (IETF), its areas, and its working groups. Note that
other groups may also distribute working documents as Internet-
Drafts.
Internet-Drafts are draft documents valid for a maximum of six
months and may be updated, replaced, or obsoleted by other documents
at any time. It is inappropriate to use Internet-Drafts as
reference material or to cite them other than as "work in progress."
The list of current Internet-Drafts can be accessed at
http://www.ietf.org/ietf/1id-abstracts.txt
The list of Internet-Draft Shadow Directories can be accessed at
http://www.ietf.org/shadow.html
This Internet-Draft will expire on August 14, 2021.
Copyright Notice
Copyright (c) 2021 IETF Trust and the persons identified as the
document authors. All rights reserved.
This document is subject to BCP 78 and the IETF Trust's Legal
Provisions Relating to IETF Documents
(http://trustee.ietf.org/license-info) in effect on the date of
publication of this document. Please review these documents
carefully, as they describe your rights and restrictions with
respect to this document. Code Components extracted from this
document must include Simplified BSD License text as described in
Section 4.e of the Trust Legal Provisions and are provided without
warranty as described in the Simplified BSD License.
Abstract
McFadden Expires August 14, 2021 [Page 1]
Internet-Draft A Taxonomy for Endpoints February 2021
A separate document [I-D:draft-mcfadden-opsec-endp-evolve] attempts
to establish the capabilities and limitations of endpoint-only
security solutions and explore potential alternative approaches.
That document discusses endpoints in general terms. It has been
suggested that there are classes of endpoints that have different
characteristics. Those classes may have completely different threat
landscapes and the endpoints may have completely different security
capabilities. As a companion to the endpoint evolution draft, this
document provides a taxonomy of endpoints that is intended to
provide a foundation for further work on endpoint security evolution
and research on approaches to providing endpoint security
alternatives in a diverse group of settings.
Table of Contents
1. Introduction...................................................3
2. Conventions used in this document..............................4
3. Problem Statement..............................................4
4. The Endpoint in the EVOLVE draft...............................4
5. Taxonomy and Hierarchy.........................................5
6. Taxonomy.......................................................6
6.1. Traditional and Enterprise Computing Equipment [TECE].....6
6.1.1. Description..........................................6
6.1.2. Endpoint characteristics.............................6
6.2. Personal Computing Equipment..............................7
6.2.1. Description..........................................7
6.2.2. Endpoint characteristics.............................8
6.3. Human Interface Devices...................................8
6.3.1. Endpoint description.................................8
6.3.2. Endpoint characteristics.............................9
6.4. Human Sensor Devices.....................................10
6.4.1. Endpoint characteristics............................10
6.5. Non-human Sensor Devices.................................11
6.5.1. Endpoint Description................................11
6.5.2. Endpoint characteristics............................11
6.6. Peripheral Computing Equipment and Embedded Endpoints....12
6.6.1. Endpoint Description................................12
6.6.2. Endpoint characteristics............................12
6.7. Application Layer Endpoints..............................13
6.7.1. Description.........................................13
6.7.2. Endpoint Characteristics............................13
6.8. Edge Network and Acquisition Endpoints...................14
6.8.1. Description.........................................14
Show full document text