Technical Summary
This document describes the framework for the Interface to Network
Security Functions (I2NSF), and defines a reference model (including
major functional components) for I2NSF. Network security functions
(NSFs) are packet-processing engines that inspect and optionally
modify packets traversing networks, either directly or in the context
of sessions to which the packet is associated.
Working Group Summary
There was nothing exceptional in the WG processing for this document.
There was careful debate resulting in a number of changes and careful
synchronization with other WG documents.
Document Quality
This framework is not directly implementable, but it underpins the work
of the working group. At least one vendor is building a system based on
the work of the working group and following this framework as an
architecture. There has also been experimentation at IETF hackathons
that is consistent with this framework.
Personnel
Yoav Nir is the Document Shepherd.
Kathleen Moriarty is the Responsible AD.