[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [OPS-AREA] Issue 1: should we have a security boilerplateformanagement protocols and data models?

To: "'ops-area $IETF$'" <ops-area at ietf.org>
Subject: Re: [OPS-AREA] Issue 1: should we have a security boilerplateformanagement protocols and data models?
From: "Randy Presuhn" <randy_presuhn at mindspring.com>
Date: Wed, 4 Feb 2009 17:24:32 -0800
Delivered-to: ops-area at core3.amsl.com
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=dk20050327; d=mindspring.com; b=B5qHVxGREYkQNLsCvpIkq84Lmk4Y9gBu0io4HpdlKbVeXM1qJfn7QlkDCkN4LPWU; h=Received:Message-ID:From:To:References:Subject:Date:MIME-Version:Content-Type:Content-Transfer-Encoding:X-Priority:X-MSMail-Priority:X-Mailer:X-MimeOLE:X-ELNK-Trace:X-Originating-IP;
List-archive: <http://www.ietf.org/mail-archive/web/ops-area>
List-help: <mailto:ops-area-request@ietf.org?subject=help>
List-id: OPS Area e-mail list <ops-area.ietf.org>
List-post: <mailto:ops-area@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/ops-area>, <mailto:ops-area-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/ops-area>, <mailto:ops-area-request@ietf.org?subject=unsubscribe>
References: <051c01c986df$ce1b89b0$0600a8c0 at china.huawei.com> <004e01c986f5$8b8aaac0$6801a8c0 at oemcomputer> <056401c98702$731e26d0$0600a8c0 at china.huawei.com>

Hi -

> From: "David Harrington" <ietfdbh at comcast.net>
> To: "'Randy Presuhn'" <randy_presuhn at mindspring.com>; "'ops-area (IETF)'" <ops-area at ietf.org>
> Sent: Wednesday, February 04, 2009 11:54 AM
> Subject: RE: [OPS-AREA] Issue 1: should we have a security boilerplateformanagement protocols and data models?
...
> I am not sure which goal you find admirable, but I assume you mean
> suggesting that protocols should support access control, and the info
> model access should differentiate between modify sensitivity and
> expose sensitivity.

However, it's not even clear whether netconf access control will
even be formulated in those terms (it might be "per RPC") nor
do we even know whether the granularity of "information element"
would be congruent with what netconf might do.  (I would hope so,
but then it might start to look surprisingly like VACM.)

> I tried to write the text to say that the protocol should support
> control of access to the information. I tried to avoid saying anything
> about using a particular conceptualization/model of access control.
> "support" could be for a proprietary access control model, or a
> standardized one - but some type of access control should be
> supported.

We're in agreement.  The difficulty is that access control models
aren't *necessarily* formulated in terms of information elements,
even though doing so is in my opinion a very sensible thing.

> I think that whether the access control is standardized or
> proprietary, it will be reasonable to expect that the access control
> will differentiate between operations that expose and those that
> modify (if there is a modify capability).

Maybe.  If it looks like some CLI access control models, it will
be organized around a set of "verbs" rather than information objects.
I certainly don't recommend such an approach, but until netconf
nails this down, I'd be wary of trying to predict how it will end up.

Randy

Follow-Ups:
- Re: [OPS-AREA] Issue 1: should we have a securityboilerplateformanagement protocols and data models?
  - From: David Harrington

References:
- [OPS-AREA] Issue 1: should we have a security boilerplate for management protocols and data models?
  - From: David Harrington
- Re: [OPS-AREA] Issue 1: should we have a security boilerplate formanagement protocols and data models?
  - From: Randy Presuhn
- Re: [OPS-AREA] Issue 1: should we have a security boilerplateformanagement protocols and data models?
  - From: David Harrington

Prev by Date: Re: [OPS-AREA] Issue 1: should we have a security boilerplateformanagement protocols and data models?
Next by Date: Re: [OPS-AREA] Issue 3: replacement boilerplate formanagementobjectsensitivity
Previous by thread: Re: [OPS-AREA] Issue 1: should we have a security boilerplateformanagement protocols and data models?
Next by thread: Re: [OPS-AREA] Issue 1: should we have a securityboilerplateformanagement protocols and data models?
Index(es):
- Date
- Thread