RE: Storage over Ethernet/IP2000-05-30 07:20:03At 18:02 29-05-00 , Dawson, Peter D wrote: is vulnerability and threat analysis part of the standardization process ?? YES (shouting intentional). The "Security Considerations" section of every RFC ought to contain vulnerability, threat analysis, risk mitigation, and residual risk information. Ran rja(_at_)inet(_dot_)org
|
|