Software-Defined Security Services Working Group–January 12, 2017 Meeting Notes
By TINA ZHANG, Cisco
S-DSS community members,
Below please find S-DSS community meeting notes held on 1/12:
Vendor co-chair nomination and voting process discussed and agreed upon.
All nominations are to be submitted to entire community by 1/19 with voting ending on 1/24. ONUG will issue a poll everywhere link to facilitate working group member co-chair nomination voting
Currently three nominations are submitted:
Linda Dunbar, Huawei
Rakesh Kumar, Juniper
Mukesh Gupta, Illumino
Tina Zhang, Cisco has volunteered for the SoSDSS role
Working group members provided their top two use cases for working group consideration. The use case suggested are below. ONUG will issue a poll everywhere link to facilitate working group member voting on these use cases to guide the working group in agenda development for the winter session.
The working group will focus on a few select and important demonstrations for the vendor community that demonstrate the S-DSS framework.
Linda Dunbar suggested an open source policy controller for consideration and will seek to arrange a demo for the working group.
All members are encouraged to read the S-DSS working group white paper located here http://www.onug.net/onug-content-downloads/
All members are encouraged to vote upon vendor co-chair and use case selection.
All vendors are encouraged to submit nominations for co-chair status.
Agenda Items for Next Meeting:
Develop ideas and concepts to advance the S-DSS framework:
in market creation via demonstration
engage the open source and standards community
Review and approve vendor co-chair and two key use cases
Potential Use Case Focus Areas
1. container security
2. hybrid cloud security
3. virtual and physical device security
4. policy enforcement of workload across public and private cloud:
5. service chaining
6. enforcement consistency across workloads independent upon their environment (bare metal, hypervisor, container) and locale (private and public cloud)
7. how to define policy from security services perspective
8. how to manage security based policy globally,
9. security at edge or NFV in the middle from network virtualization and host virtualization
10. security operations management efficiency; multivendor integration
11. software-defined environments how to integrate security related operating systems vulnerability, secure configuration, use same to discover new vulnerabilities to push patches
12. unified security management system:
13. visibility across objects, bare metal, containers and hypervisors
14. policy frameworks to connect policy lifecycle management
Open Networking User Group