Hi Everyone,
I will accept the comments written by Balazs and the others as
a positive review of the Security Considerations of this draft.
I will continue to accept additional comments on that section and
upon the rest of the draft. This will give the other author some
time to get the rest of this draft put together. We'll then
discuss all of that draft.
I will now open the doors for discussion of the other 2 deliverables
described in our charter.
Alex Brown has been thinking about the first deliverable which is
an authenticated syslog. I've asked him to send this to the list
so that we may discuss it. Just so that we're all on the same
track, this will be a lightweight implementation that can provide
some assurance of authentication without strong cryptographic
protection.
Balazs' comments are a good starting point for the discussion of
the second deliverable. I would encourage others to add their
comments - as I will be. :-)
I would also suggest that this group look at two other areas.
1. The chairs of the IDWG asked that we review the Intrusion Alert
Protocol to see if it would fit our needs as well. It appears that
the most recent version is here:
http://www.ietf.org/internet-drafts/draft-ietf-idwg-iap-01.txt
2. I think that it would also be good to review the work going on in
the Blocks Extensible Exchange Protocol (beep) working group. Their
charter is here:
http://www.ietf.org/html.charters/beep-charter.html
The drafts of this group are here:
http://www.ietf.org/internet-drafts/draft-mrose-bxxp-framework-00.txt
http://www.ietf.org/internet-drafts/draft-mrose-bxxp-design-00.txt
tcp mapping is here:
http://www.ietf.org/internet-drafts/draft-mrose-bxxp-tcpmapping-00.txt
and I understand that a draft is being written to address SCTP mapping.
This is just starting and I will understand if the members of this
WG would prefer to not wait on that effort. It does, however, appear to
have some characteristics built into it that may appeal to us.
Your comments on any or all of this will be greatly appreciated.
Many thanks,
Chris
P.S. - I've purposefully changed my "reply to" address to be that of
this working group list. If you want to send something directly to me,
please use [EMAIL PROTECTED]
