Endpoint Security Posture Assessment: Enterprise Use Cases
RFC 7632, “Endpoint Security Posture Assessment: Enterprise Use Cases”, is an Informational document published in September 2015 by D. Waltermire, D. Harrington. The canonical text is published by the RFC Editor.
Abstract
This memo documents a sampling of use cases for securely aggregating configuration and operational data and evaluating that data to determine an organization's security posture. From these operational use cases, we can derive common functional capabilities and requirements to guide development of vendor-neutral, interoperable standards for aggregating and evaluating data relevant to security posture.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 7632 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 7631 TLV Naming in the Mobile Ad Hoc Network Generalized Packet/Message Format
- RFC 7633 X.509v3 Transport Layer Security Feature Extension
- RFC 7630 HMAC-SHA-2 Authentication Protocols in the User-based Security Model for SNMPv3
- RFC 7634 ChaCha20, Poly1305, and Their Use in the Internet Key Exchange Protocol and IPsec
- RFC 7629 Flow-Binding Support for Mobile IP
- RFC 7635 Session Traversal Utilities for NAT Extension for Third-Party Authorization
- RFC 7628 A Set of Simple Authentication and Security Layer Mechanisms for OAuth
- RFC 7636 Proof Key for Code Exchange by OAuth Public Clients