Date

Attendees

  • Magnus Ahltorp
  • Tomáš Čejka
  • Václav Bartoš
  • Simona Venuti

  • David Schmitz

     

Goals

  • Status Updates of work items (FOD/SecEventProcessing/CT)

  • Status of DDoS Detection/Mitigation WG

  • F2F-Meeting-Planning

  •  AOB

Discussion items

TimeItemWhoNotes
Status of CTwork on ct server in last weeks:
- transition to new db format for enhancements to sustain performance  (+ correctness in parallel) even under high loads
- new db format allows to detect correctness errors (e.g. after a node crashed) and to recover from them
- new db format allows for much faster adding of new (merge backup) node
- added tests for failover

last-week discussion between Linus and David an IETF meeting:
- hackathon: CT server applied for DNSSEC: very successful
- Linus currently working on the CT GOSSIP draft ( https://datatracker.ietf.org/doc/draft-ietf-trans-gossip/ ) will now start to prototypically test gossip protocol (e.g. integration into curl) before publication of draft as RFC
- start with discussion/planning about CT servers to be deployed/operated in other domains : plan to have a first 1/2 hour VC with Jerry, David, maybe interested other task member, and especially interested NREN/GEANT operators which covers architecture of CT server, installation aspects and foreseen operations issues
 Status of FOD no changes
 Status of Event Processing 

First preliminary Prototype of Repshield

- gets events from Warden (IDEA format)

- IP addresses in events are enhanced by additional info (geo, ASN)

- plan to correlate with blacklist; currently investigating/negotiating blacklist services which allow (many) queries for free (download or DNS interface)

- plan to have the prototype fully working eof this summer

- Vaclav will send URL for prototype of RepShield (web query interface)

 Status of DDoS detection/mitigation WG 

DDoS detection/mitigation survey draft:

- wait for Evangelos how to combine with particular survey about FOD/potential scrubbing center solution in GEANT

    
 F2F-meeting talk about in next meeting
 Next regular T6 VC 10.08.2016 14:00-14:30 CEST

Action items

  • DELAYED David: create foodle for initial discussion VC (1/2 hours) about CT servers to be deployed/operated in other domains
  • Vaclav: send link to RepShield Prototype
  • all: next regular task VC: Wed, 10.08.2016, 14:00-14:30 CEST