RFC - 4766
Intrusion Detection Message Exchange Requirements
| Original: | ftp://ftp.isi.edu/in-notes/rfc4766.txt |
|---|---|
| Authors: | M. Wood [Internet Security Systems, Inc.], M. Erlinger [Harvey Mudd College] |
| Date: | March 2007 |
| Category: | Informational |
| Referred by: | 2 RFC |
| Refers to: | 5 RFC |
Status
This memo provides information for the Internet community. It does not specify an Internet standard of any kind. Distribution of this memo is unlimited.
Copyright Notice
Copyright (C) The IETF Trust (2007).
Abstract
The purpose of the Intrusion Detection Exchange Format Working Group (IDWG) is to define data formats and exchange procedures for sharing information of interest to intrusion detection and response systems and to the management systems that may need to interact with them. This document describes the high-level requirements for such a communication mechanism, including the rationale for those requirements where clarification is needed. Scenarios are used to illustrate some requirements.
-
prepared by Miloslav Nic
- the founder of Zvon.org and Law-Ref.org
- the head of B.Sc. program Informatics and chemistry [in Czech]
- the founder of Lidem.org - Volby 2006 - parliamentary elections in the Czech Republic [in Czech]
- the chief consultant of the publishing house ICT Press
- and Pavel Srb, a student of B.Sc. program Informatics and chemistry