Intrusion Detection Message Exchange Requirements
RFC 4766, “Intrusion Detection Message Exchange Requirements”, is an Informational document published in March 2007 by M. Wood, M. Erlinger. The canonical text is published by the RFC Editor.
Abstract
The purpose of the Intrusion Detection Exchange Format Working Group (IDWG) is to define data formats and exchange procedures for sharing information of interest to intrusion detection and response systems and to the management systems that may need to interact with them. This document describes the high-level requirements for such a communication mechanism, including the rationale for those requirements where clarification is needed. Scenarios are used to illustrate some requirements. This memo provides information for the Internet community.
What “Informational” means
Published for the general information of the community. It does not define an IETF standard and carries no standards-track status.
The canonical text of RFC 4766 is hosted at rfc-editor.org. Available in TXT,HTML.
- RFC 4765 The Intrusion Detection Message Exchange Format
- RFC 4767 The Intrusion Detection Exchange Protocol
- RFC 4764 The EAP-PSK Protocol: A Pre-Shared Key Extensible Authentication Protocol Method
- RFC 4762 Virtual Private LAN Service Using Label Distribution Protocol Signaling
- RFC 4770 vCard Extensions for Instant Messaging
- RFC 4761 Virtual Private LAN Service Using BGP for Auto-Discovery and Signaling
- RFC 4771 Integrity Transform Carrying Roll-Over Counter for the Secure Real- time Transport Protocol
- RFC 4760 Multiprotocol Extensions for BGP-4