Dear all: We have just submitted v06 of our I-D, as promised. This is a summary with the changes:
- It includes last recent text we sent to the mailing list to consider Valery’s comments (thank you again). - Replacement uint32 by uint16 in algorithms types from IANA. (thanks Tero) - IANA Considerations section included. - Security section extended with subsection 9.3 about Security considerations about YANG models as indicated in https://trac.ietf.org/trac/ops/wiki/yang-security-guidelines Best Regards. > Inicio del mensaje reenviado: > > De: [email protected] > Asunto: New Version Notification for > draft-ietf-i2nsf-sdn-ipsec-flow-protection-06.txt > Fecha: 29 de julio de 2019, 19:33:32 CEST > Para: "Fernando Pereniguez-Garcia" <[email protected]>, "Rafa > Marin-Lopez" <[email protected]>, "Rafael Lopez" <[email protected]>, "Gabriel > Lopez-Millan" <[email protected]> > > > A new version of I-D, draft-ietf-i2nsf-sdn-ipsec-flow-protection-06.txt > has been successfully submitted by Rafa Marin-Lopez and posted to the > IETF repository. > > Name: draft-ietf-i2nsf-sdn-ipsec-flow-protection > Revision: 06 > Title: Software-Defined Networking (SDN)-based IPsec Flow > Protection > Document date: 2019-07-28 > Group: i2nsf > Pages: 86 > URL: > https://www.ietf.org/internet-drafts/draft-ietf-i2nsf-sdn-ipsec-flow-protection-06.txt > Status: > https://datatracker.ietf.org/doc/draft-ietf-i2nsf-sdn-ipsec-flow-protection/ > Htmlized: > https://tools.ietf.org/html/draft-ietf-i2nsf-sdn-ipsec-flow-protection-06 > Htmlized: > https://datatracker.ietf.org/doc/html/draft-ietf-i2nsf-sdn-ipsec-flow-protection > Diff: > https://www.ietf.org/rfcdiff?url2=draft-ietf-i2nsf-sdn-ipsec-flow-protection-06 > > Abstract: > This document describes how providing IPsec-based flow protection by > means of a Software-Defined Network (SDN) controller (aka. Security > Controller) and establishes the requirements to support this service. > It considers two main well-known scenarios in IPsec: (i) gateway-to- > gateway and (ii) host-to-host. The SDN-based service described in > this document allows the distribution and monitoring of IPsec > information from a Security Controller to one or several flow-based > Network Security Function (NSF). The NSFs implement IPsec to protect > data traffic between network resources. > > The document focuses on the NSF Facing Interface by providing models > for configuration and state data required to allow the Security > Controller to configure the IPsec databases (SPD, SAD, PAD) and IKEv2 > to establish Security Associations with a reduced intervention of the > network administrator. > > > > > Please note that it may take a couple of minutes from the time of submission > until the htmlized version and diff are available at tools.ietf.org. > > The IETF Secretariat > ------------------------------------------------------- Rafa Marin-Lopez, PhD Dept. Information and Communications Engineering (DIIC) Faculty of Computer Science-University of Murcia 30100 Murcia - Spain Telf: +34868888501 Fax: +34868884151 e-mail: [email protected] -------------------------------------------------------
_______________________________________________ I2nsf mailing list [email protected] https://www.ietf.org/mailman/listinfo/i2nsf
