Dear Working Group Members,

I am writing to request your consultation on the draft "Guidelines for Topology Data Sharing" for our Working Group.

The objective is to establish a clear framework for sharing data in a manner that is both secure and effective. We have formulated an initial draft comprising five key principles regarding security and privacy.

We would like to consult the group on whether these five items are sufficient for our purposes, or if you would like to add further points. We welcome any feedback on whether these guidelines are comprehensive and clear.

Draft Guidelines:

1. Data provided will be public. Do not include any data that should not be public. 2. The geo-position of infrastructure (PoPs, equipment) should be obfuscated. 3. Due to DDoS security concerns, carefully consider if you want to provide link capacity values for core infrastructure. 4. It is not recommended to include capacity on links to end nodes / institutions (due to DDoS security concerns). 5. Consider whether infrastructure details are necessary e.g. multiple routers/switches in one location should be consolidated to a single generic node. Infrastructure details should not include equipment type or vendor name.

Following this review period, the guide will be consolidated into a formal document, and I will share the link to the doc once it is finalized.

We appreciate your attention to this matter.

Sincerely,

--- Gustavo Araújo |Coordenador de P&D | R&D Coordinator Gerência de P&D em Ciberinfraestrutura (GCI) | Cyberinfrastructure R&D Management Tel.: +55 61 9 8379-7918 | Teams: gustavo.araujo@rnp.brmailto:gustavo.araujo@rnp.br www.rnp.brhttp://www.rnp.br

[cid:b3d4e361-3285-44fe-9ec1-36ce799564c7]