--- 1/draft-ietf-i2nsf-nsf-monitoring-data-model-02.txt 2020-05-07 10:13:09.075073566 -0700 +++ 2/draft-ietf-i2nsf-nsf-monitoring-data-model-03.txt 2020-05-07 10:13:09.207076926 -0700 @@ -1,23 +1,23 @@ Network Working Group J. Jeong Internet-Draft C. Chung Intended status: Standards Track Sungkyunkwan University -Expires: May 7, 2020 S. Hares +Expires: November 8, 2020 S. Hares L. Xia Huawei H. Birkholz Fraunhofer SIT - November 4, 2019 + May 7, 2020 I2NSF NSF Monitoring YANG Data Model - draft-ietf-i2nsf-nsf-monitoring-data-model-02 + draft-ietf-i2nsf-nsf-monitoring-data-model-03 Abstract This document proposes an information model and the corresponding YANG data model for monitoring Network Security Functions (NSFs) in the Interface to Network Security Functions (I2NSF) framework. If the monitoring of NSFs is performed in a comprehensive way, it is possible to detect the indication of malicious activity, anomalous behavior or the potential sign of denial of service attacks in a timely manner. This monitoring functionality is based on the @@ -47,25 +47,25 @@ Internet-Drafts are working documents of the Internet Engineering Task Force (IETF). Note that other groups may also distribute working documents as Internet-Drafts. The list of current Internet- Drafts is at https://datatracker.ietf.org/drafts/current/. Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress." - This Internet-Draft will expire on May 7, 2020. + This Internet-Draft will expire on November 8, 2020. Copyright Notice - Copyright (c) 2019 IETF Trust and the persons identified as the + Copyright (c) 2020 IETF Trust and the persons identified as the document authors. All rights reserved. This document is subject to BCP 78 and the IETF Trust's Legal Provisions Relating to IETF Documents (https://trustee.ietf.org/license-info) in effect on the date of publication of this document. Please review these documents carefully, as they describe your rights and restrictions with respect to this document. Code Components extracted from this document must include Simplified BSD License text as described in Section 4.e of the Trust Legal Provisions and are provided without warranty as @@ -126,21 +126,21 @@ 9. Tree Structure . . . . . . . . . . . . . . . . . . . . . . . 28 10. YANG Data Model . . . . . . . . . . . . . . . . . . . . . . . 37 11. IANA Considerations . . . . . . . . . . . . . . . . . . . . . 72 12. Security Considerations . . . . . . . . . . . . . . . . . . . 72 13. Acknowledgments . . . . . . . . . . . . . . . . . . . . . . . 73 14. Contributors . . . . . . . . . . . . . . . . . . . . . . . . 73 15. References . . . . . . . . . . . . . . . . . . . . . . . . . 73 15.1. Normative References . . . . . . . . . . . . . . . . . . 73 15.2. Informative References . . . . . . . . . . . . . . . . . 75 Appendix A. Changes from draft-ietf-i2nsf-nsf-monitoring-data- - model-01 . . . . . . . . . . . . . . . . . . . . . . 77 + model-02 . . . . . . . . . . . . . . . . . . . . . . 77 Authors' Addresses . . . . . . . . . . . . . . . . . . . . . . . 77 1. Introduction According to [I-D.ietf-i2nsf-terminology], the interface provided by a Network Security Function (NSF) (e.g., Firewall, IPS, Anti-DDoS, or Anti-Virus function) to administrative entities (e.g., Security Controller) to enable remote management (i.e., configuring and monitoring) is referred to as an I2NSF NSF-Facing Interface @@ -1712,21 +1712,21 @@ +--ro module-name? string +--ro severity? severity Figure 1: Information Model for NSF Monitoring 10. YANG Data Model This section introduces a YANG data model for the information model of the NSF monitoring information model. - file "ietf-i2nsf-monitor@2019-11-04.yang" + file "ietf-i2nsf-monitor@2020-05-07.yang" module ietf-i2nsf-monitor { yang-version 1.1; namespace "urn:ietf:params:xml:ns:yang:ietf-i2nsf-monitor"; prefix iim; import ietf-inet-types{ prefix inet; reference "Section 4 of RFC 6991"; @@ -1761,21 +1761,21 @@ Redistribution and use in source and binary forms, with or without modification, is permitted pursuant to, and subject to the license terms contained in, the Simplified BSD License set forth in Section 4.c of the IETF Trust's Legal Provisions Relating to IETF Documents (http://trustee.ietf.org/license-info). This version of this YANG module is part of RFC 6087; see the RFC itself for full legal notices."; - revision "2019-11-04" { + revision "2020-05-07" { description "The third revision"; reference "RFC XXXX: I2NSF NSF Monitoring YANG Data Model"; } typedef severity { type enumeration { enum high { description "high-level"; @@ -3571,80 +3571,80 @@ . 15.2. Informative References [I-D.ietf-i2nsf-capability] Xia, L., Strassner, J., Basile, C., and D. Lopez, "Information Model of NSFs Capabilities", draft-ietf- i2nsf-capability-05 (work in progress), April 2019. [I-D.ietf-i2nsf-consumer-facing-interface-dm] - Jeong, J., Kim, E., Ahn, T., Kumar, R., and S. Hares, + Jeong, J., Chung, C., Ahn, T., Kumar, R., and S. Hares, "I2NSF Consumer-Facing Interface YANG Data Model", draft- - ietf-i2nsf-consumer-facing-interface-dm-06 (work in - progress), July 2019. + ietf-i2nsf-consumer-facing-interface-dm-08 (work in + progress), March 2020. [I-D.ietf-i2nsf-nsf-facing-interface-dm] Kim, J., Jeong, J., J., J., PARK, P., Hares, S., and Q. Lin, "I2NSF Network Security Function-Facing Interface YANG Data Model", draft-ietf-i2nsf-nsf-facing-interface- - dm-07 (work in progress), July 2019. + dm-08 (work in progress), November 2019. [I-D.ietf-i2nsf-registration-interface-dm] Hyun, S., Jeong, J., Roh, T., Wi, S., J., J., and P. PARK, "I2NSF Registration Interface YANG Data Model", draft- - ietf-i2nsf-registration-interface-dm-05 (work in - progress), July 2019. + ietf-i2nsf-registration-interface-dm-08 (work in + progress), March 2020. [I-D.ietf-i2nsf-terminology] Hares, S., Strassner, J., Lopez, D., Xia, L., and H. Birkholz, "Interface to Network Security Functions (I2NSF) Terminology", draft-ietf-i2nsf-terminology-08 (work in progress), July 2019. [I-D.yang-i2nsf-nfv-architecture] Yang, H., Kim, Y., Jeong, J., and J. Kim, "I2NSF on the NFV Reference Architecture", draft-yang-i2nsf-nfv- architecture-05 (work in progress), July 2019. [I-D.yang-i2nsf-security-policy-translation] Jeong, J., Yang, J., Chung, C., and J. Kim, "Security Policy Translation in Interface to Network Security Functions", draft-yang-i2nsf-security-policy- - translation-04 (work in progress), July 2019. + translation-05 (work in progress), November 2019. [RFC3954] Claise, B., Ed., "Cisco Systems NetFlow Services Export Version 9", RFC 3954, DOI 10.17487/RFC3954, October 2004, . [RFC6087] Bierman, A., "Guidelines for Authors and Reviewers of YANG Data Model Documents", RFC 6087, DOI 10.17487/RFC6087, January 2011, . [RFC8329] Lopez, D., Lopez, E., Dunbar, L., Strassner, J., and R. Kumar, "Framework for Interface to Network Security Functions", RFC 8329, DOI 10.17487/RFC8329, February 2018, . [RFC8340] Bjorklund, M. and L. Berger, Ed., "YANG Tree Diagrams", BCP 215, RFC 8340, DOI 10.17487/RFC8340, March 2018, . -Appendix A. Changes from draft-ietf-i2nsf-nsf-monitoring-data-model-01 +Appendix A. Changes from draft-ietf-i2nsf-nsf-monitoring-data-model-02 The following changes are made from draft-ietf-i2nsf-nsf-monitoring- - data-model-01: + data-model-02: - o Section 7 is reorganized such that the subsections for the - monitored objects (i.e., event, log, and counter) of System and - NSF are listed up pairwisely with a pair of System and NSF except - alarm because alarm is a monitored object to only System. + o This version has a submission date update to maintain the active + status of the draft. + + o This version updates the version numbers of the referenced drafts. Authors' Addresses Jaehoon Paul Jeong Department of Computer Science and Engineering Sungkyunkwan University 2066 Seobu-Ro, Jangan-Gu Suwon, Gyeonggi-Do 16419 Republic of Korea