Intrusion Detection RFCs
It's been three years since I think I blogged on this topic, but I noticed three RFCs on intrusion detection were published this month:
Is anyone using these? I think Prelude does, but how about commercial products?
- RFC 4765: The Intrusion Detection Message Exchange Format (IDMEF)
- RFC 4766: Intrusion Detection Message Exchange Requirements
- RFC 4767: The Intrusion Detection Exchange Protocol (IDXP)
Is anyone using these? I think Prelude does, but how about commercial products?
Comments