IETF Logo Mail Archive

[OPSEC] I-D Action: draft-ietf-opsec-indicators-of-compromise-02.txt

internet-drafts@ietf.org Mon, 12 September 2022 14:56 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: opsec@ietf.org
Delivered-To: opsec@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id AC67CC14CE30; Mon, 12 Sep 2022 07:56:05 -0700 (PDT)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: opsec@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 8.16.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: opsec@ietf.org
Message-ID: <166299456569.40890.14626767404747814614@ietfa.amsl.com>
Date: Mon, 12 Sep 2022 07:56:05 -0700
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsec/5N4ziieQBUrTS2-AG_eSg9U4A3o>
Subject: [OPSEC] I-D Action: draft-ietf-opsec-indicators-of-compromise-02.txt
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.39
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 12 Sep 2022 14:56:05 -0000

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Operational Security Capabilities for IP Network Infrastructure WG of the IETF.

        Title           : Indicators of Compromise (IoCs) and Their Role in Attack Defence
        Authors         : Kirsty Paine
                          Ollie Whitehouse
                          James Sellwood
                          Andrew Shaw
  Filename        : draft-ietf-opsec-indicators-of-compromise-02.txt
  Pages           : 29
  Date            : 2022-09-12

Abstract:
   Cyber defenders frequently rely on Indicators of Compromise (IoCs) to
   identify, trace, and block malicious activity in networks or on
   endpoints.  This draft reviews the fundamentals, opportunities,
   operational limitations, and best practices of IoC use.  It
   highlights the need for IoCs to be detectable in implementations of
   Internet protocols, tools, and technologies - both for the IoCs'
   initial discovery and their use in detection - and provides a
   foundation for new approaches to operational challenges in network
   security.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-opsec-indicators-of-compromise/

There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-opsec-indicators-of-compromise-02.html

A diff from the previous version is available at:
https://www.ietf.org/rfcdiff?url2=draft-ietf-opsec-indicators-of-compromise-02


Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts

v2.23.0 | Report a Bug | By Email