Skip to main content

Framework for Interface to Network Security Functions
draft-merged-i2nsf-framework-05

Document Type Replaced Internet-Draft (individual)
Authors Edward Lopez, Diego Lopez , Linda Dunbar , John Strassner , Xiaojun Zhuang , Joe Parrott , Ramki Krishnan , Seetharama Rao Durbha
Last updated 2016-03-16
Replaced by RFC 8329
Stream (None)
Intended RFC status (None)
Formats
Expired & archived
Stream Stream state (No stream defined)
Consensus boilerplate Unknown
RFC Editor Note (None)
IESG IESG state Replaced by draft-ietf-i2nsf-framework
Telechat date (None)
Responsible AD (None)
Send notices to (None)

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

Abstract

This document defines the framework for guiding the functionality provided by I2NSF. Network security functions (NSFs) are packet- processing engines that inspect and optionally modify packets traversing networks, either directly or in the context of sessions in which the packet is associated. This document provides an overview of how NSFs are used, and describes how NSF software interfaces are controlled and monitored using rulesets. The design of these software interfaces must prevent the creation of implied constraints on NSF capability and functionality.

Authors

Edward Lopez
Diego Lopez
Linda Dunbar
John Strassner
Xiaojun Zhuang
Joe Parrott
Ramki Krishnan
Seetharama Rao Durbha

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)