Network Endpoint Assessment (NEA): Overview and Requirements
Draft of message to be sent after approval:
From: The IESG <firstname.lastname@example.org> To: IETF-Announce <email@example.com> Cc: Internet Architecture Board <firstname.lastname@example.org>, RFC Editor <email@example.com>, nea mailing list <firstname.lastname@example.org>, nea chair <email@example.com> Subject: Document Action: 'Network Endpoint Assessment (NEA): Overview and Requirements' to Informational RFC The IESG has approved the following document: - 'Network Endpoint Assessment (NEA): Overview and Requirements ' <draft-ietf-nea-requirements-08.txt> as an Informational RFC This document is the product of the Network Endpoint Assessment Working Group. The IESG contact persons are Tim Polk and Pasi Eronen. A URL of this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-ietf-nea-requirements-08.txt
Technical Summary This document defines the problem statement, scope and protocol requirements between the components of the NEA (Network Endpoint Assessment) reference model. NEA provides owners of networks (e.g. an enterprise offering remote access) a mechanism to evaluate the posture of a system. This may take place during the request for network access and/or subsequently at any time while connected to the network. The learned posture information can then be applied to a variety of compliance oriented decisions. The posture information is frequently useful for detecting systems that are lacking or have out of date security protective mechanisms such as: anti-virus and host-based firewall software. Working Group Summary This document is a product of the Network Endpoint Assessement (nea) Working Group. There is strong consensus in the WG to publish this document. Protocol Quality Tim Polk reviewed this specification for the IESG. There is at least one group of WG participants drafting protocol specifications to meet the requirements in this document.