CURRENT_MEETING_REPORT_ Reported by Joyce K. Reynolds/ISI and J. Paul Holbrook/CERT SSPHWG Minutes Discussion of Handbook's current draft status from November 29, 1990. It has been decided to go ahead with the I-D process to RFC publication. We have formally requested a 30 minute plenary slot at the Atlanta IETF to talk about the Site Security Policy Handbook, which we expect to be a FYI/RFC by that plenary. We have established the following firm dates for the Handbook: o The document is open for comments and revisions until May 15, 1991. Paul Holbrook will be working on the contents of the document for fine tuning and clarity per comments received back from SSPHWGers. Paul's deadline is April 15, 1991. Joyce Reynolds will take over and make editorial adjustments to the document, per comments received back from SSPHWGers on how the document could have a more even ``flow'' if some sections were rearranged. Joyce's deadline is May 15, 1991. o After the May 15th close of comments and revisions, Paul and Joyce will continue to incorporate any final comments. The document will be submitted as an Internet-Draft by EOB Pacific Time, May 31, 1991. o There were a substantial number of comments about Section 2, especially from Rich Pethia of the CERT. Barbara Fraser of CERT has agreed to take over Chapter 2, with the assistance of Allen Sturtevant, to rework it to be consistent with the comments received. An updated Chapter 2 will be provided by the May 15th deadline. o Once the Handbook is in the I-D process, there will be a 30 day stay in I-D land, allowing for final comments by June 28, 1991. Paul and Joyce will edit any comments and submit the I-D to the RFC Editor by EOB Pacific Time, July 12, 1991. Additional items: 1 o Ask Noel Chiappa about his lawyer report to put in the Handbook's Bibliography - per Vint Cerf suggestion. o How about an Index in this Handbook?? Yes, per Vint Cerf. Joyce will check on this in the ms macros. o PostScript/NRoff help will be provided by Vint Cerf and Jeff Edelheit. o ``Beta testing'' the Handbook: - Allen Sturtevant will provide input from Bob Aiken - CERTTools - Washington University - Dan Weidman - Security Policy and SSPHWG members - Mike Roberts - EDUCOM o Suggestion from Vint Cerf - organize a workshop that would use this document. CNRI could provide some sponsorship. Attendees Warren Benson wbenson@zeus.unomaha.edu Vinton Cerf vcerf@NRI.Reston.VA.US Martina Chan mchan@mot.com Stephen Crocker crocker@tis.com Jeffrey Edelheit edelheit@smiley.mitre.org Barbara Fraser byf@cert.sei.cmu.edu Martyne Hallgren martyne@theory.tn.cornell.edu Sergio Heker heker@jvnc.net Joel Jacobs jdj@mitre.org Steven Lendt network@zeus.unomaha.edu Bill Manning bmanning@houston.sc.ti.com Mike Marcinkevicz mdm@calstate.edu Richard Pethia rdp@cert.sei.cmu.edu Tim Seaver tas@mcnc.org Albert Soule als@sei.cmu.edu Allen Sturtevant sturtevant@ccc.nmfecc.gov Joanie Thompson joanie@nsipo.nasa.gov Daniel Weidman weidman@wudos2.wustl.edu 2