RFC 4765

The Intrusion Detection Message Exchange Format (IDMEF), March 2007

Canonical URL:
https://www.rfc-editor.org/rfc/rfc4765.txt
File formats:
Plain TextPDF
Status:
EXPERIMENTAL
Authors:
H. Debar
D. Curry
B. Feinstein
Stream:
IETF
Source:
idwg (sec)

Cite this RFC: TXT  |  XML

DOI:  10.17487/RFC4765

Discuss this RFC: Send questions or comments to iesg@ietf.org

Other actions: Submit Errata  |  Find IPR Disclosures from the IETF


Abstract

The purpose of the Intrusion Detection Message Exchange Format (IDMEF) is to define data formats and exchange procedures for sharing information of interest to intrusion detection and response systems and to the management systems that may need to interact with them. This document describes a data model to represent information exported by intrusion detection systems and explains the rationale for using this model. An implementation of the data model in the Extensible Markup Language (XML) is presented, an XML Document Type Definition is developed, and examples are provided. This memo defines an Experimental Protocol for the Internet community.


For the definition of Status, see RFC 2026.

For the definition of Stream, see RFC 4844.


Download PDF Reader



Search RFCs
Advanced Search
×