%% You should probably cite draft-yang-i2nsf-security-policy-translation-16 instead of this revision. @techreport{yang-i2nsf-security-policy-translation-09, number = {draft-yang-i2nsf-security-policy-translation-09}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-yang-i2nsf-security-policy-translation/09/}, author = {Jaehoon Paul Jeong and Patrick Lingga and Jinhyuk Yang and Chaehong Chung}, title = {{Security Policy Translation in Interface to Network Security Functions}}, pagetotal = 30, year = 2021, month = aug, day = 21, abstract = {This document proposes a scheme of security policy translation (i.e., Security Policy Translator) in Interface to Network Security Functions (I2NSF) Framework. When I2NSF User delivers a high-level security policy for a security service, Security Policy Translator in Security Controller translates it into a low-level security policy for Network Security Functions (NSFs). For this security policy translation, this document specifies the mapping between a high-level security policy based on the Consumer-Facing Interface YANG data model and a low-level security policy based on the NSF-Facing Interface YANG data model. Also, it describes an architecture of a security policy translator along with an NSF database, and the process of security policy translation with the NSF database.}, }