WG Action: RECHARTER: Security Issues in Network Event Logging (syslog)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



The Security Issues in Network Event Logging (syslog) working group in the
Security Area of the IETF has been rechartered.  For additional
information, please contact the Area Directors or the working group
Chairs.

Security Issues in Network Event Logging (syslog)
---------------------------------------------------
Current Status: Active Working Group

Chairs:

  * Chris Lonvick (clonvick@cisco.com)
  * David Harrington (ietfdbh@comcast.net)

Security Area Directors:

  * Tim Polk (tim.polk@nist.gov)
  * Pasi Eronen (pasi.eronen@nokia.com)

Security Area Advisor:

  * Pasi Eronen (pasi.eronen@nokia.com)

Mailing Lists:

  General Discussion: syslog@ietf.org
  To Subscribe: syslog-request@ietf.org
  In Body: in body: (un)subscribe
  Archive: http://www.ietf.org/mail-archive/web/syslog

Description of Working Group:

Syslog has been a de-facto standard for logging system events for long
time. The syslog WG recently completed standardization of the syslog
protocol (RFC 5424), secure transport of the syslog protocol over TLS (RFC
5425), and non-secure transport over UDP (RFC 5426).

The WG under this charter will standardize a DTLS transport for syslog,
providing a secure transport for syslog messages in cases where a
connection-less transport is desired. The threats that this WG will
primarily address are modification, disclosure, and masquerade. A
secondary threat is message stream modification.  These are consistent
with those addressed in RFC 5425. Draft-feng-syslog-transport-dtls is
already similar to RFC 5425 in this respect, so this draft will become the
starting point for the WG document, which the WG will adjust as needed,
and merge desired features from other sources, such as
draft-petch-gerhards-syslog-transport-dtls, draft-hardaker-isms-dtls-tm,
and draft-seggelmann-tls-dtls-heartbeat.

The WG will also complete the ongoing work to specify a standardized
mechanism for signing syslog messages (draft-ietf-syslog-sign).

Goals and Milestones:

Oct 2009  Submit a document that defines a message signing and 
          ordering mechanism to the IESG for consideration as a 
          PROPOSED STANDARD
Mar 2010  Submit Syslog DTLS Transport Mapping to the IESG for 
          consideration as a PROPOSED STANDARD
_______________________________________________

IETF-Announce@ietf.org
https://www.ietf.org/mailman/listinfo/ietf-announce

[Index of Archives]     [IETF]     [IETF Discussion]     [Linux Kernel]

  Powered by Linux