Thank you for the thoughtful discussion yesterday. The meeting minutes have been updated and can be found here: https://drive.google.com/file/d/1NMaDfJVFIm2_jG3lfCOwCk0vUQ4DOttp/view?usp=sharing
The recording for this meeting and future meetings can be found in the Library of the ZTA SME Circle group, along with the agendas/ meeting minutes, and other relevant ZTA artifacts, such as the charter. The Circle group is invite-only, so if you do not have access to this group, please let us know ASAP and we can get that resolved.
All Modules for the ZTA Training as well as the ZTA Glossary can be found here: https://drive.google.com/drive/folders/1RRq8MTFh19NCxw8bf5FH8Qito31mEC3F?usp=sharing
As a reminder, small groups have started up again. Each of you should've already been assigned to one and invited via a calendar invite. If you did not receive a calendar invite or if you are not assigned to a team please let us know.Note: Team 1 and Team 3 were merged and Team 1 will join Team 3's call on Thursdays. There will be no Team 1 call on Tuesdays moving forward.
Team 2: Wednesday 2pm-3pm (PT): Module 4 - SDP Architectures and Implementation Approaches
Team 1/3: Thursday 8am-9am (PT): Module 3 - SDP Key Features and Technologies
Section 3.1.1- The Shifting Perimeter
Matthew Meerman was assigned to work on this section by 12/2.
Section 3.1.2- The IP Address Challenge
Section 126.96.36.199- Capabilities required to mitigate the Connect first, Authenticate second model security weaknesses
Leon was assigned to create a new title/conform to the challenge (not the solution)/find another more appropriate section by 12/2.
Section 3.1.3- Integrating Security Controls
Section 3.1.4- SDP Key Features and Technologies
Sections 3.2-188.8.131.52 Hiding of Infrastructure, Attack Detection
We need a good flow between this section and section 3.7- Dynamic Firewall
Jake Kline was assigned to work on it by 12/2.
Section 3.2.2- Single Packet Authorization
Leon was assigned to work on this section by 12/2.
Sections 3.3-184.108.40.206 Mutual Transport Layer Authentication, MITM Protection
We need the current text reviewed, as well as new text for those sections. Additionally, should any new sections be added?
Abhishek was assigned to work on it by 12/2.
Sections 3.4- 220.127.116.11 The Access Model Based on the Principles of Least Privilege and Need to Know
Michael Herdon was assigned to review those sections by 12/2.
Section 3.4.2- Policy driven authorization and access
Vani was assigned to work on this section by 12/2.
Sections 3.5 and 3.5.1 Dynamic Access Control
Remo was assigned to write content for those sections by 12/2.
Sections 3.6- 3.6.2 Secure Remote Access
Rajesh was assigned to write content for those sections by 12/2.
Section 3.7- Dynamic Firewall
Prasad and Jake Kline were assigned to work on harmonizing this section with section 3.2 by 12/2.
18.104.22.168- Fused multi-Source Intelligence
Leon will work on this section by 12/2.
Sections 22.214.171.124.1 -126.96.36.199.4 Dynamic Firewall
Leon will work on those sections by 12/2.
3.7.2- Shortcomings of Firewall Architecture
Leon was assigned to rewrite it by 12/2.
Lauren was assigned to propose what the vision should be of this section and the title by 12/2.
Section 3.7.3- Policy Driven
Prasad was assigned to work on this section by 12/2.
Sections 3.8- 188.8.131.52 Identity & Device-Driven Access Control
Sam Reddy was assigned to work on those sections by 12/2.
Module 4-SDP Architectures and Implementation Approaches
Sam Reddy and Leon were assigned to work on section 4.2.6- Device Validation by 12/1.
Rich Lee was assigned to section 2.4- SDP Architecture Considerations, by 12/1.
Shinesa Cambric was assigned to work on section 4.3.2- Authentication Phase, by 12/1.
Nishanth was assigned to review sections 4.1 through 4.3 by 12/1.
Naresh was assigned to work on section 4.1- SDP Architecture Components, section 184.108.40.206- SDP Controller Integration Points, and section 220.127.116.11- SDP Controller Responsibilities: Keys and Certificates by 12/1.
Robert Morris was assigned to work on section 4.3.1- Onboarding Phase, by 12/1.
Assigned to all to review and look at the current changes in unit 4.3 by 12/1.
Assigned to all, help us write quiz questions
10 questions/ unit
Assigned to all, if you have not already, please read the SDP Spec v2 and Architecture Guide attached.
This will be crucial for writing M3-6.
Assigned to all, if you have not already please review M2, introduction to SDP.
This was written using the Architecture Guide and SDP Spec v1 doc.