|
Please note that the message initially sent by Ken
Alonge, and now Rene's additional comments bounced because the attached file is
larger than 100KB. The original file sent by Ken is now posted at:
I am having problems updating the page to link to
the file but the file can be accessed through this pointer.
Dolors
----- Original Message -----
Sent: Tuesday, April 15, 2003 11:55
AM
Subject: Re: Call tomorrow: threat model
discussion
Hi Ken:
I reviewed your document and it seems a good
basis for discussions this
afternoon. The only remark I have are as
follows:
p.1, "Introduction", line 5: security services do not counter
threats, but
security measures do.
p. 2, "LAN characteristics", line 4:
same remark.
Furthermore, I usually have a more security objectives
point of view.
Example:
Confidentiality as security
objective
Realization:
- physical measures (wired networks where channel
access is hard)
- logical measures (wireless
networks)
"Ken Alonge" <kenneth.alonge@verizon.net> on
04/15/2003 10:38:14 AM
Please respond to "Ken Alonge"
<kenneth.alonge@verizon.net>
To: "Dolors Sala"
<dolors@ieee.org>, "LinkSec"
<stds-802-linksec@ieee.org>
cc: Rene
Struik/Certicom@Certicom, "Mahalingam Mani"
<mmani@avaya.com>
Subject: Re: Call tomorrow: threat
model discussion
Dolors-
Attached is the strawman
paper that I put together for discussion among Rene,
Mani, and
myself. It is an adaptation of the threat assessment that was
done
for .10. The goal of the strawman is to present the generic
threats posed to
wired and wireless LANs. Eventually, we, the rest of
the LinkSec SG and members
of the affected working groups have to determine
the derived threats against
specific LAN technologies, as well as against
specific safeguard mechanisms.
These will be in the form of annexes.
A start toward that goal is provided in
the wireless annex.
I'm not
sure what depth of discussion we can have today. It might be good
for
people to just read the document at this point and provide comments on
whether
or not they believe this is the right
direction.
Ken
----- Original Message -----
From:
Dolors Sala
To: LinkSec
Cc: Rene Struik ; Mahalingam Mani
; Ken Alonge
Sent: Monday, April 14, 2003 6:00 PM
Subject:
Call tomorrow: threat model discussion
A reminder that
the next linksec call is tomorrow at 2:00pm EDT. Call in
details given
below.
Tomorrow's discussion is on threat model and it will be
led by Rene Struik,
Mahalingam Mani and Ken Alonge. No material is
available yet. But some slides
may be sent by them to the reflector before
the call tomorrow.
Dolors
---
Call
in details:
Date: Tuesday
Time: 2:00 PM EST
US Dial: 877-237-7156
The International/toll number is:
908-516-0200
Access code for both:
826435
|