[OPSEC] I-D Action: draft-ietf-opsec-indicators-of-compromise-03.txt
internet-drafts@ietf.org Tue, 06 December 2022 12:20 UTC
Return-Path: <internet-drafts@ietf.org>
X-Original-To: opsec@ietf.org
Delivered-To: opsec@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id C07CDC1522B5; Tue, 6 Dec 2022 04:20:36 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: opsec@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 9.1.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: opsec@ietf.org
Message-ID: <167032923676.35542.9600776178573349567@ietfa.amsl.com>
Date: Tue, 06 Dec 2022 04:20:36 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsec/No_cGlFTKh-nMOXX3Q8PXchZBRY>
Subject: [OPSEC] I-D Action: draft-ietf-opsec-indicators-of-compromise-03.txt
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.39
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 06 Dec 2022 12:20:36 -0000
A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Operational Security Capabilities for IP Network Infrastructure WG of the IETF. Title : Indicators of Compromise (IoCs) and Their Role in Attack Defence Authors : Kirsty Paine Ollie Whitehouse James Sellwood Andrew Shaw Filename : draft-ietf-opsec-indicators-of-compromise-03.txt Pages : 29 Date : 2022-12-06 Abstract: Cyber defenders frequently rely on Indicators of Compromise (IoCs) to identify, trace, and block malicious activity in networks or on endpoints. This draft reviews the fundamentals, opportunities, operational limitations, and best practices of IoC use. It highlights the need for IoCs to be detectable in implementations of Internet protocols, tools, and technologies - both for the IoCs' initial discovery and their use in detection - and provides a foundation for new approaches to operational challenges in network security. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-opsec-indicators-of-compromise/ There is also an HTML version available at: https://www.ietf.org/archive/id/draft-ietf-opsec-indicators-of-compromise-03.html A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-opsec-indicators-of-compromise-03 Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts
- [OPSEC] I-D Action: draft-ietf-opsec-indicators-o… internet-drafts