Technical Summary
This document proposes an information model and the corresponding
YANG data model of an interface for monitoring Network Security
Functions (NSFs) in the Interface to Network Security Functions
(I2NSF) framework. If the monitoring of NSFs is performed with the
NSF monitoring interface in a comprehensive way, it is possible to
detect the indication of malicious activity, anomalous behavior, the
potential sign of denial of service attacks, or system overload in a
timely manner. This monitoring functionality is based on the
monitoring information that is generated by NSFs. Thus, this
document describes not only an information model for the NSF
monitoring interface along with a YANG data diagram, but also the
corresponding YANG data model.
Working Group Summary
This document was one of the milestones for the I2NSF WG. It is a product of a small, focused team.
Document Quality
It has gone through multiple cycles of YANG Doctors' reviews. It addressed substantial feedback during AD review and directorate (ARTART, SECDIR, TSVART and GENART) review during IETF LC.
There have been IETF Hackathon implementation and Open source implementation (https://github.com/jaehoonpaul/i2nsf-framework)
for the YANG model specified by this document.
Personnel
* Document Shepherd is Linda Dunbar
* The Responsible Area Director is Roman Danyliw