Salsa Call 23-Feb-2006

Salsa Call
23-Feb-2006

*Attendees*
Mark Poepping, CMU (chair)
Jeff Schiller, MIT
Chris Misra, U. Mass
Rodney Petersen, Educause
Kevin Miller, Duke
Ken Klingenstein, Internet2
Charles Yun, Internet2
Greg Travis, Indiana
Doug Pearson, Indiana
Terry Gray, U. Washington
Steve Olshansky, Internet2 (scribe)

*Discussion*

- Cyber Storm -
Doug reported on the recent DHS cyber security exercise, about which he attended a briefing. From the 10-Feb-06 press release: "Cyber Storm, the first full-scale government-led cyber security exercise to examine response, coordination, and recovery mechanisms to a simulated cyber-event within international, federal, state, and local governments, in conjunction with the private sector. In total, 115 public, private, and international agencies, organizations, and companies were involved in the planning and implementation of Cyber Storm."

For further details, including the list of participants, see the press release at
http://www.dhs.gov/dhspublic/display?content=5410

While R&E/REN-ISAC was not among the participants, it is hoped that we will be included in a future joint exercise.

- DNSSEC -
There was a DNSSEC workshop at the recent Joint Techs meeting
http://jointtechs.es.net/newmexico2006/
- abstract and presentations at
http://events.internet2.edu/2006/jt-albuquerque/sessionDetails.cfm?session=2487&event=243

A mailing list has been setup and Charles is looking into potentially setting up a working group or SIG around this.

Goals are to setup a .edu testbed within 3-6 months, then work on a general rollout for interested campuses. The testbed goal would be to setup a trusted peering circle of limited size, to iron out deployment issues.

- Abilene Operational Security Exercise (AbOSE) 2006 -
As a followup to last years exercise, the next one is being planned, and will include CANARIE and GEANT. Goal is to have 1-2 regional providers in the US participate as well. NOX has expressed interest and may participate, as time commitments are further clarified. Hopefully a date and some participants will be announced by the I2MM. Expectation is that it will be a "tabletop" rather than a live exercise. Other than the fact that this is happening, most details will not be made public.

- Security Implications for Optical Bypass -
A session at Joint Techs was held on this subject, and was well received:
http://events.internet2.edu/2006/jt-albuquerque/sessionDetails.cfm?session=2460&event=243

Next steps in this area are being considered...

- NetAuth Update -
Recent activity has included development of case studies, and there was a SIG recently at NERCOMP that went well. They are working on developing the case studies in coordination with the Effective Practices group so that they are consistent in format/style, and could be included.

- CSI2 Update -
Is still in formative stages. Doug is working with UMass to develop a shared DarkNet. Another one-off call is planned for next week, and regular calls will likely start up soon.

- FWNA Update -
The operational experiment is proceeding well toward getting started, the first connections should happen soon. There is no likelihood of working with the Euro Eduroam folks in the near future, as they work to sort out their own issues which are in many ways similar to ours. Shib integration is on the list of next-gen approaches to be worked out.

- Net@EDU Meeting Update -
Rodney reported on this meeting, held recently in Tempe: http://www.educause.edu/nmm06/ Rodney noted that, relevant to Salsa, Ken and Jim Pepin did a session talking about the Reconnections workshop held last Fall. http://security.internet2.edu/rtp/

Side note: the Reconnections workshop report is expected to be released in the next few weeks.

- NetGuru Update -
This meeting was held just after Joint Techs, ~ 30 attended including several Salsa folks. It was well received, but next steps are not yet decided. This is probably not going to turn into a working group. A wiki was proposed as a repository of experiences with network management tools, and this would likely be very useful and appreciated. Currently this will be hosted at MIT, but would likely be moved to Internet2 once their wiki services are ready.

One observation was that the peer-to-peer personal networking aspects of this meeting was very appreciated by the attendees. This could potentially be leveraged and expanded via the wiki.

To the extent that effective practices emerge from this sort of discussion, this would likely be received as a very positive step.

- Security Professionals Conference - Upcoming April 10-12, 2006 in Denver
http://www.educause.edu/sec06

Rodney discussed that it would be good to think about taking advantage of the assembled critical mass of the right people, leveraging this meeting to schedule related meetings, perhaps more technically-oriented security focused, or?

Chris and Doug are planning a BoF about regional security coordination. One goal would be to determine if it would be useful for REN-ISAC to schedule a meeting focused on this, to share experiences and support relationships among these regional security initiatives.

There are currently BoFs scheduled for Monday evening, which will include one for state networks.