Network Endpoint Assessment : Overview and Requirements
RFC 5209, “Network Endpoint Assessment : Overview and Requirements”, is an Informational document published in June 2008 by P. Sangster, H. Khosravi, M. Mani, K. Narayan, J. Tardo. The canonical text is published by the RFC Editor.
Abstract
This document defines the problem statement, scope, and protocol requirements between the components of the NEA (Network Endpoint Assessment) reference model. NEA provides owners of networks (e.g., an enterprise offering remote access) a mechanism to evaluate the posture of a system. This may take place during the request for network access and/or subsequently at any time while connected to the network. The learned posture information can then be applied to a variety of compliance-oriented decisions. The posture information is frequently useful for detecting systems that are lacking or have out-of-date security protection mechanisms such as: anti-virus and host-based firewall software. In order to provide context for the requirements, a reference model and terminology are introduced. This memo provides information for the Internet community.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 5209 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 5208 Public-Key Cryptography Standards #8: Private-Key Information Syntax Specification Version 1.2
- RFC 5210 A Source Address Validation Architecture Testbed and Deployment Experience
- RFC 5207 NAT and Firewall Traversal Issues of Host Identity Protocol Communication
- RFC 5211 An Internet Transition Plan
- RFC 5206 End-Host Mobility and Multihoming with the Host Identity Protocol
- RFC 5212 Requirements for GMPLS-Based Multi-Region and Multi-Layer Networks
- RFC 5205 Host Identity Protocol Domain Name System Extensions
- RFC 5213 Proxy Mobile IPv6