Salsa Call 13-July-06

*Attendees*
Mark Poepping, CMU (chair)
Greg Travis, Indiana
Jim Pepin, USC
Ken Klingenstein, Internet2
Rodney Petersen, Educause
Doug Pearson, Indiana/REN-ISAC
Joe St. Sauver, U. Oregon
Terry Gray, U. Washington
Chas DiFatta, CMU
Steve Olshansky, Internet2 (scribe)

*Discussion*
- Post Charles - going forward -
Recent meeting with international networks, joint security exercise didn't come up. Thus REN-ISAC should plan to organize and run the next event. Doug will follow up.

Program coordination - workshops/meetings etc. - Chris will take the lead for now. SteveO will pick up flywheeling as needed.

- Advanced Network Mgmt -
What is Salsa's role in this space? Independent of NewNet, possibly with some participation by vendors. Perhaps a workshop leading to a working group?

E.g. point-to-point optical circuit security and management issues, where is this being discussed? This is likely an area where we could jump in...

What should the Reconnections next step be - another workshop? Working group? Engage with the GENI folks? NetGuru is more short/medium-term in scope, while Reconnections followup is longer-term. Net mgmt and net diagnostics would appear to be a productive area to focus on.

What is the logical protected boundary for security - the department, the campus, or the community? Where do policy requirement fit into this picture - subnets no longer useful enforcement boundaries...

Next step that makes sense would be a workshop to refine issues, catalyze broader participation, and collectively determine the next steps - perhaps some scoped tasks (e.g. white papers, effective practices) assigned to members of the community or a cooperating organization. Could this be a bridge between the NetGuru and Reconnections crowd?

Ken and SteveO will follow up with getting this started - putting together a program committee and looking at potential funding sources. SC06 (Tampa 11-17 Nov), IETF (San Diego 5-10 Nov), or NSF CyberSecurity (DC, Fall date TBD) meetings may be potential meetings to hold this in conjunction with. More to come on this...

- Meeting updates -
- Educause STF meeting at Educause Conference in October
http://www.educause.edu/e06

- STF Leadership meeting at SAC in Snowmass
http://www.educause.edu/sa06

- PKI Summit
http://www.educause.edu/pki06

- NSF CyberSecurity Summit - focused on federal facilities, program committee forming, details forthcoming

- CALEA update -
ACE issued its interpretation of CALEA in Higher Ed. See: http://www.educause.edu/CALEA

Key Points:
- encourages institutions to position themselves as private networks, thus CALEA does not apply. Public access problematic?
- does an institution "support" its conx to the Internet? Defining support is still somewhat nebulous... What about consortia or GigaPOPs? Would they be considered ISPs in this context? E.g. if a GigaPOP is queried about communication related to a particular user, it would be unable to answer - map data to a user. How would data collection work on high-speed networks?

Does this only apply to edge devices? What about networks confined to the internal campus perimeter? Or networks restricted to external access, e.g. for guests?

The Educause CALEA technical advisory group will be convening to discuss this. Currently there are more questions than answers, Rodney will keep us updated as events warrant. http://www.educause.edu/CALEA

- REN-ISAC update -
The ISACs are still in communication with each other, no substantial change one way or the other. Some are exchanging active threat info with each other, but there is not much in the way of higher-level coordination or planning. There isn't any gov't funding for operations, to date. The other ISACs appear to be sustainable, so far, although some are fairly inactive.