[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: auditing

To: Derrell Piper <piper@cisco.com>
Subject: Re: auditing
From: Rodney Thayer <rodney@sabletech.com>
Date: Wed, 02 Apr 1997 10:16:20 -0500
Cc: ipsec@tis.com
In-Reply-To: <199704020037.QAA00806@fluffy.cisco.com>
Sender: owner-ipsec@ex.tis.com

I think auditing is WITHIN scope since as an IETF WG we've been told we
need to address all those real-world issues a draft is supposed to cover,
including network management.  Auditing is one form of network management.
In fact, we should have our own SNMP MIB and be generating (in my opinion
optional) traps at theses points where the docs reference auditing.  [Refer
to Bradner's talk at the San Jose IETF meeting for my thinking we've been
told we should consider network management.]

At 04:37 PM 4/1/97 -0800, you wrote:
>Auditing is obviously a host-system issue and outside of the scope of the
>network protocol or IPSEC architecture document(s).  However, there's
>nothing wrong with pointing out where a host should perform auditing, if
>it's capable of doing so.  In this spirit, it would seem more appropriate
>for the specs to read SHOULD instead of MUST.
>
>Derrell
>
>

--------
Rodney Thayer <rodney@sabletech.com>
PGP: BB1B6428 409129AC  076B9DE1 4C250DD8

References:

auditing

From: Derrell Piper <piper@cisco.com>

Prev by Date: auditing
Next by Date: Re: MUST vs. SHOULD audit
Prev by thread: auditing
Next by thread: Re: auditing
Index(es):
- Main
- Thread