How is this not like STIX?
-t
On 2015-04-29 10:41 AM, B.-C. Boesch wrote:
Abstract
The Intrusion Detection Parametrization Exchange Format (IDPEF)
defines data formats and exchange procedures to standardize
parametrization information exchange into intrusion detection and
response systems from an independent central Manager to any Analyzer.
The IDPEF enables a combination of different (vendor and analyzing
technique) IDS Analyzers under one independent central Manager. A
separate operations of IDS is not longer needed. Base is a new
parametrization methodology where IDS operating parameters
(configurations) are separated in an environmental parametrization
part and a vendor-specific analyzing part.
This Internet-Draft describes a data model to represent
parametrization information of intrusion detection system entities,
and explains the rationale for using this model. An implementation of
the data model in the Extensible Markup Language (XML) is presented, a
XML Document Type Definition is developed, and parametrization
examples are provided.
_______________________________________________
OPSAWG mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/opsawg
