Framework for Interface to Network Security Functions
Draft of message to be sent after approval:
From: The IESG <email@example.com> To: IETF-Announce <firstname.lastname@example.org> Cc: Yoav Nir <email@example.com>, firstname.lastname@example.org, The IESG <email@example.com>, firstname.lastname@example.org, email@example.com, Adrian Farrel <firstname.lastname@example.org>, Kathleen.Moriarty.email@example.com, firstname.lastname@example.org, email@example.com Subject: Document Action: 'Framework for Interface to Network Security Functions' to Informational RFC (draft-ietf-i2nsf-framework-10.txt) The IESG has approved the following document: - 'Framework for Interface to Network Security Functions' (draft-ietf-i2nsf-framework-10.txt) as Informational RFC This document is the product of the Interface to Network Security Functions Working Group. The IESG contact persons are Kathleen Moriarty and Eric Rescorla. A URL of this Internet Draft is: https://datatracker.ietf.org/doc/draft-ietf-i2nsf-framework/
Technical Summary This document describes the framework for the Interface to Network Security Functions (I2NSF), and defines a reference model (including major functional components) for I2NSF. Network security functions (NSFs) are packet-processing engines that inspect and optionally modify packets traversing networks, either directly or in the context of sessions to which the packet is associated. Working Group Summary There was nothing exceptional in the WG processing for this document. There was careful debate resulting in a number of changes and careful synchronization with other WG documents. Document Quality This framework is not directly implementable, but it underpins the work of the working group. At least one vendor is building a system based on the work of the working group and following this framework as an architecture. There has also been experimentation at IETF hackathons that is consistent with this framework. Personnel Yoav Nir is the Document Shepherd. Kathleen Moriarty is the Responsible AD.