Re: [Nea] UPDATED: WG Review: Network Endpoint Assessment (nea)

To: "Keith Moore" <moore at cs.utk.edu>
Subject: Re: [Nea] UPDATED: WG Review: Network Endpoint Assessment (nea)
From: "Mike Fratto" <mfratto at gmail.com>
Date: Tue, 24 Oct 2006 12:12:21 -0400
Cc: nea at ietf.org, iesg at ietf.org, ietf at ietf.org
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:cc:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=aGBvmtZ8QBwImkZ7sZ4qpUlurgyBA0/NAs6GVYazuVeek7kVkvHf698R6kka/f/FHf14NRoeAOtLoQX1/mqm/Ero3fVxe9MujnxmZuOuUEOmVgQKOoKHrDAP0NO+TrXEzEopePR9V3/B9YFnDbTkqV/DJz8GbxbexXxnN/+FI64=
In-reply-to: <453E0649.2000503@cs.utk.edu>
List-archive: <http://www1.ietf.org/pipermail/nea>
List-help: <mailto:nea-request@ietf.org?subject=help>
List-id: Network Endpoint Assessment discussion list <nea.ietf.org>
List-post: <mailto:nea@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/nea>, <mailto:nea-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/nea>, <mailto:nea-request@ietf.org?subject=unsubscribe>
References: <C24CB51D5AA800449982D9BCB903251324254F@NAEX13.na.qualcomm.com> <453E0649.2000503@cs.utk.edu>

On 10/24/06, Keith Moore <moore at cs.utk.edu> wrote:

As far as I can tell, this is the crux of the problem with NEA - that in
general it's simply unreasonable for a network to demand that every host
that connect to it conform to arbitrary policies for configuration of
those hosts.  IETF should not be standardizing unreasonable
expectations. And even if the behavior is in some limited set of
circumstances reasonable (which is debatable), IMHO IETF should hesitate
to define standards for corner cases.


Whether a company manageing a network demands that all hosts meet a
specific policy is a local policy issue and the charter specifically
addresses this concern:

"An organization may make a range of policy decisions based on the
posture of an endpoint. NEA is not intended to be prescriptive in
this regard. "

I think the intent of the working group is to standardize the data
formats and protocols so that NEA components can talk together, not to
say what to do with non-compliant hosts. That is a local policy
decsion. But to get to that decision, the components first have to
communicate.

At a very high level, this isn't much different than RADIUS, which
defines the data formats and protocols between a network access device
such as modem pool and the RADIUS server. Vendor specific attributes
are supported and the standards don't attempt to provide
*meaning*--that is left upto the vendor defining the specific
attributes.

_______________________________________________
Nea mailing list
Nea at ietf.org
https://www1.ietf.org/mailman/listinfo/nea

Follow-Ups:
- Re: [Nea] UPDATED: WG Review: Network Endpoint Assessment (nea)
  - From: Keith Moore
- Re: [Nea] UPDATED: WG Review: Network Endpoint Assessment (nea)
  - From: Alan DeKok

References:
- RE: [Nea] UPDATED: WG Review: Network Endpoint Assessment (nea)
  - From: Narayanan, Vidya
- Re: [Nea] UPDATED: WG Review: Network Endpoint Assessment (nea)
  - From: Keith Moore

Prev by Date: Re: [Nea] UPDATED: WG Review: Network Endpoint Assessment (nea)
Next by Date: Re: [Nea] UPDATED: WG Review: Network Endpoint Assessment (nea)
Previous by thread: Re: [Nea] UPDATED: WG Review: Network Endpoint Assessment (nea)
Next by thread: Re: [Nea] UPDATED: WG Review: Network Endpoint Assessment (nea)
Index(es):
- Date
- Thread

Re: [Nea] UPDATED: WG Review: Network Endpoint Assessment (nea)

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.