RFC 5209

Network Endpoint Assessment (NEA): Overview and Requirements, June 2008

Canonical URL:
https://www.rfc-editor.org/rfc/rfc5209.txt
File formats:
Plain TextPDF
Status:
INFORMATIONAL
Authors:
P. Sangster
H. Khosravi
M. Mani
K. Narayan
J. Tardo
Stream:
IETF
Source:
nea (sec)

Cite this RFC: TXT  |  XML

DOI:  10.17487/RFC5209

Discuss this RFC: Send questions or comments to nea@ietf.org

Other actions: Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

This document defines the problem statement, scope, and protocol requirements between the components of the NEA (Network Endpoint Assessment) reference model. NEA provides owners of networks (e.g., an enterprise offering remote access) a mechanism to evaluate the posture of a system. This may take place during the request for network access and/or subsequently at any time while connected to the network. The learned posture information can then be applied to a variety of compliance-oriented decisions. The posture information is frequently useful for detecting systems that are lacking or have out-of-date security protection mechanisms such as: anti-virus and host-based firewall software. In order to provide context for the requirements, a reference model and terminology are introduced. This memo provides information for the Internet community.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Download PDF Reader