On Thu, Nov 30, 2017 at 11:50 AM, Joe Clarke <jclarke@xxxxxxxxx> wrote: > On 11/29/17 11:21, Kathleen Moriarty wrote: >>> To that end, it might be useful to specifically point out where vendors have a >>> role to fill in some of these areas to allow for transit encryption while >>> providing the necessary hooks for operators to manage and troubleshoot their >>> network. Specifically, in many of the troubleshooting scenarios, operators >>> won't be able to provide truly useful tools to their end users unless the >>> vendors provide the right level of visibility. >> >> Do you have suggested text that we could add to address this gap from >> your experience? > > Maybe something along the lines of the following in Section 2.1.2 (or > maybe in a section of its own): > > "Vendors must be aware that in order for operators to better > troubleshoot and manage networks with increasing amounts of encrypted > traffic, built-in diagnostics and serviceability must be enhanced to > provide detailed logging and debugging capabilities that, when possible, > can reveal cleartext network parameters. In addition to traditional > logging and debugging methods, packet tracing and inspection along the > service path will provide operators the necessary visibility to continue > to diagnose problems reported both internally and by their customers." Thank you, Joe! > > Joe -- Best regards, Kathleen