Minutes IETF104: opsec
minutes-104-opsec-00
The information below is for an old version of the document.
Meeting Minutes | Operational Security Capabilities for IP Network Infrastructure (opsec) WG Snapshot | |
---|---|---|
Date and time | 2019-03-25 10:20 | |
Title | Minutes IETF104: opsec | |
State | Active | |
Other versions | plain text | |
Last updated | 2019-03-25 |
minutes-104-opsec-00
Meeting: OpSec 104 Day: Monday 3/25/2019 Jabber: warren kumari Notes: chris morrow Agenda: Slides: - eric venke Slides are hard.. we're doing this freehand! Opsec Document: (sept 2012) draft-ietf-opsec-v6-14 Update on this document: we're updating for timelines as required. This document only covers isp/residential/enterprise but does not cover IoT. Various disucssion about ULA, the discussion was very fraugt with peril, point now to ULA usage considerations document instead of trying to cover this in the opsec document. Jen Linkova: "ULAs are like 1918, please don't do that?" Erik: great! 3 lines to 2 lines!! w00t! Bunches of followup from Fernando, great! Point at the SAVI documents as well, to get proper user/mac/ip mappings. Erik/Enno asking for WGLC at this point. RonBonica - like to bring up some document issues: 1) 'use pi for security reasons' - do we really want to do that? ref: exploding routing tables ? Questions about: "does the document really say that?" discuss!! Erik: "better to get PI so you are independent from your ISP, etc" Jen: "should not be in the document... not really security?" Rudiger: "Can't find security reasoning for PI? Where is it?" RonBonica: "Idiosyncracies of ipv6...." don't often translate to security considerations... linkage between idiosyncracies and security considerations ought to be linked better. 2) Would love to get better reviews, will make changes and -16 coming 'now'. Asking for reviews, please review please!! Ron Bonica: "how many have read it in the last year?" 3) Nathalie - RIPE: good work... should make some better distinction with ULA/PI - same as Jen's comments, but aside from that 'move forward please". 4) Tim <mumble>: Perhaps the PI /etc discussion is more about risk-management vs 'security'... Perhaps moving / making a 'risk management' document instead is a better plan? move a bunch of the risk-management, leaves better document for readers of this current document. Brief overview of Sriram's document now: draft to chat about is: enhanced-feasible-path-reverse-path-filtering asking for WGLC for this document? Ron Bonica - yes, let's WGLC, hurray! Meeting Ajorned.... 11:45am