Salsa call 8-Mar-2007

*Attendees*
Mark Poepping, CMU (chair)
Joe St. Sauver, U. Oregon/Internet2
Doug Pearson, REN-ISAC/Indiana
Jim Pepin, Clemson
Jack Suess, UMBC
Rodney Petersen, Educause
Chas DiFatta, CMU
Kevin Miller, Duke
Renee Frost, Internet2
Ken Klingenstein, Internet2
Chris Misra, U. Mass
Steve Olshansky, Internet2 (scribe)

*Discussion*
There was discussion about potential new members. Michael Van Norman (UCLA) has agreed to join Salsa, and we will see him on future calls although he had a conflict today. Please continue to send comments and suggestions to Mark and Ken.

- Disaster Planning & Recovery WG This new WG is being setup now... Don MacLeod (Cornell) has agreed to chair it, it will work in conjunction with the Educause Business Continuity (BC) Constituent Group
http://www.educause.edu/BusinessContinuityManagementConstituentGroup/12480

The WG will hold a BoF at the I2MM. Early work will include:
- one pager to educate campus C-Level execs
- matchmaking service for colo facilities
- efforts to include the right people on campuses
- collaborative tools (e.g. wiki)

- FWNA
Guest Access survey is being developed, goal is to collect responses in time to present findings at the Spring I2MM.

A recurring question that comes up: For campuses that have already addressed guest access for their own needs, does federating access for visitors bring enough benefit to justify the effort to implement it in the near term? Are these competitive technologies, or do they solve different problems for different constituencies? These are not competitive, there is no reason a campus cannot or should not do both.

Guest access as deployed today generally tends to be web-gateway-based, while FWNA is based upon 802.1x. Is 802.1x viable for broad deployment?

It would be helpful to gain a better understanding about the nature of guests that campuses need to support, to inform the discussion about approaches to handle them. E.g. K12 brings different issues into play...

- Spring I2MM planning
Currently 5 session in security track, including firewall issues. There will be a Salsa lunch and the MACE/Salsa dinner on Tue 24-April. Renee will send the schedule to the list when it is finalized.

- NetGuru meeting
Notes will be posted soon on theNetGuru site: http://security.internet2.edu/netguru/

There were 18 institutions represented, the discussion was well received by attendees. New leadership is being put in place for planning the next meeting adjacent to the Winter 08 Joint Techs meeting in Honolulu. More to come on this in the near future.

One likely focus area upcoming will be addressing firewall issues and best practices. There was related discussion at the NSF Large Site meeting, we will work to engage relevant people from that meeting as well as the IRTF as we move ahead.

- NSF Large Site
This was the 3rd summit, NSF has committed to continuing it. Next year it will likely be adjacent to the Security Professionals Conference in DC.

There will be an attempt to broaden participation to include DoE and others as appropriate. This is a good opportunity for communication between constituencies that may not communicate otherwise. There was also some discussion of inter-institutional incident handling/tracking, which relates well to the RENOIR work underway in CSI2.

- CSI2 Workshop this week in Cambridge MA was well received. Report will be forthcoming. Primary topics:
- Shared Darknet is starting to gain some traction (i.e. participants contributing), and led to productive discussion about future plans
- RENOIR - good feedback on current and future direction
- open source security tools - including web app assessment, host-based endpoint assessment, and tools to document and share common taxonomy around available toolsets. This may be a good candidate for working in conjunction with the STF effective practices guide/wiki, especially in sharing experiences with the various tools.

There may be some value in looking at how IT-ISAC is working through some of these issues, Chris will look into this...

- REN-ISAC Exec Advisory Group (EAG) just formed. http://www.ren-isac.net/advisory.html