Framework for Interface to Network Security Functions
draft-merged-i2nsf-framework-05
Document | Type |
Replaced Internet-Draft
(individual)
Expired & archived
|
|
---|---|---|---|
Authors | Edward Lopez, Diego Lopez , Linda Dunbar , John Strassner , Xiaojun Zhuang , Joe Parrott , Ramki Krishnan , Seetharama Rao Durbha | ||
Last updated | 2016-03-16 | ||
Replaced by | draft-ietf-i2nsf-framework | ||
RFC stream | (None) | ||
Intended RFC status | (None) | ||
Formats | |||
Stream | Stream state | (No stream defined) | |
Consensus boilerplate | Unknown | ||
RFC Editor Note | (None) | ||
IESG | IESG state | Replaced by draft-ietf-i2nsf-framework | |
Telechat date | (None) | ||
Responsible AD | (None) | ||
Send notices to | (None) |
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
Abstract
This document defines the framework for guiding the functionality provided by I2NSF. Network security functions (NSFs) are packet- processing engines that inspect and optionally modify packets traversing networks, either directly or in the context of sessions in which the packet is associated. This document provides an overview of how NSFs are used, and describes how NSF software interfaces are controlled and monitored using rulesets. The design of these software interfaces must prevent the creation of implied constraints on NSF capability and functionality.
Authors
Edward Lopez
Diego Lopez
Linda Dunbar
John Strassner
Xiaojun Zhuang
Joe Parrott
Ramki Krishnan
Seetharama Rao Durbha
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)