SALSA Conference Call
26 August 2004
----------------------------------------------
Table of Contents
*Action Items*
0. Administrivia
1. Review of Action Items and Resulting Discussion
2. New Items
*Attendees*
----------------------------------------------
*Action Items*
[AI] {Everyone} should review Marty's 13 Aug email about the new Netc WG and send comments, etc.,
prior to the next call (9 Sep).
[AI] {Mark} will email the Fall I2 MM Email Security BoF agenda to the list once it's ready.
[AI] {Charles} will email the Fall I2 MM security-related sessions to the list. [DONE]
[AI] {Ken} will post Charles's message to the EDUCAUSE security list.
[AI] {Mark} will follow-up with Mark Luker/EDUCAUSE re: DNSSec and .edu potential.
[AI] {Mark, Chris C., Chris M., Rodney, Ken, and Charles} will revisit spyware/botnets materials/ideas.
[AI] {Rodney/Chris M.} will send a formal request to Steve Worona and Tracy Mitrano asking them to write
a policy document to accompany the NetAuth strategies document.
[AI] {Chris M.} will raise the idea of a separate policy document during the next NetAuth call.
[AI] {Ken} will summarize this call's conversation about email lists. {Everyone} should review Ken's
email and provide comments, etc., by 9 Sep.
----------------------------------------------
0. Administrivia
Please send any comments regarding the 12 August minutes. The 12 August Action Items were reviewed,
and any items that need to be carried over are noted above.
----------------------------------------------
1. Review of Action Items and Resulting Discussion
. {Rodney/Ken} discuss possible names (besides LESS) for new mailing list [DONE]
Ken and Rodney agreed to use "LEAD" as the acronym for the new mailing list. (No decisions have been
made about what the acronym stands for yet.)
. {Marty} will send draft Netc charter - sent, no comment? "blessing?" [DONE]
Marty sent the Netc draft charter via email 13 Aug. There have been no comments to date.
Everyone please read Marty's email prior to the 9 Sep call and provide any thoughts, comments,
suggestions for other topics, etc.
. (Rodney) any issues for follow-up from the Effective Practices call? [DONE]
There are no issues at this time. (Rodney thought that the EP group would discuss botnets/spyware,
but that was actually a previous call.)
. (Mark) emailadmin BoF prior to I2MM [IN PROGRESS...]
The SYMPA/MList Workshop will take place 26 Sep (Sun.), 1-5 pm; the Email Security BoF will take place
26 Sep, 7-9 pm. Mark is currently working on the BoF agenda with Paul Russell, Steve Olshansky, and
James Morris, with a call scheduled next week to finalize it. The BoF might discuss senderID to
determine the value and understand what a deployment strategy might be for interested I2 folks.
. {Jeff} DNSSec and .edu potential [IN PROGRESS...]
It sounds like VeriSign can do this, so now it's up to EDUCAUSE to decide if they want to move forward.
EDUCAUSE and VeriSign will need to start working out technical details to make it happen. No one on the
call seemed to think DNSSec and .edu is a bad idea, so Mark offered to send another email and help push
this along (next steps might include another call with Mark Luker and the other EDUCAUSE folks).
We will leave this on the agenda for now and continue to provide updates here.
. {Mark, Chris C., Chris M., Rodney, Ken, and Charles} will revisit spyware/botnets materials/ideas.
[IN PROGRESS...]
----------------------------------------------
2. New Items
We are talking with JT about holding a SALSA workshop adjacent to their meeting in Denver
(late Jan/early Feb). NANOG will also hold a meeting in conjunction with JT. Everyone agreed that it
would be appropriate to hold another workshop for network security architects adjacent to NANOG/JT.
We will discuss themes/agenda during future calls.
For those of you attending the Fall I2 MM, there will be a MACE/SALSA dinner on Wed., 29 Sep, 6-10 pm.
A sign-up note will be sent closer to the meeting date. A closed SALSA meeting is scheduled after the
reception on Mon., 27 Sep, 7:30-9 pm. This meeting could be changed to an open meeting, if appropriate.
For a list of other security-related sessions, please see the 27 Aug email to the list (from Charles).
Unfortunately, NCAR has scheduled an event that overlaps with the Fall I2 MM. Rodney Petersen and
Jack Suess will attend. Ken will find out if others should also plan to attend.
Currently, the NetAuth strategies document is in draft 2 and the authors are working on draft 3.
Recently, there has been a side discussion within the NetAuth WG about the strategies document and
whether related policies should be integrated. Since it's more technical in nature, creating a separate
policy document seems most appropriate. Mark suggested sending a formal request to the Task Force Policy
& Legal Issues WG co-chairs, Steve Worona and Tracy Mitrano, and ask them to write a policy document
that would accompany the strategies document (with the NetAuth authors assisting as needed). An eDial
briefing on the NetAuth strategies document is scheduled for 23 Sep. You may register
here. (Please note that participation is limited
to 30 phone lines.)
There still seems to be a need for a list that looks at security issues, but is separate from the
EDUCAUSE, SALSA, and REN-ISAC lists. It's not clear who will participate on this list right now.
Ken will send a note to this group framing the list's name, goals, and proposed people or types
of people. We will revisit this issue in 2 weeks once everyone has reviewed Ken's summary.
----------------------------------------------
*Attendees*
Cramer, Chris
DiFatta, Chas
Frost, Renee
Gray, Terry
Klingenstein, Ken
Misra, Chris
Pearson, Doug
Pepin, Jim
Petersen, Rodney
Poepping, Mark
Schiller, Jeff
Schulman, Marty
St. Sauver, Joe
Travis, Greg
Vogel, Valerie
Yun, Charles
----------------------------------------------
[End of minutes for 26 August 2004.]