IETF Logo Mail Archive

[OPSEC] I-D Action: draft-ietf-opsec-indicators-of-compromise-04.txt

internet-drafts@ietf.org Fri, 03 February 2023 09:16 UTC

Return-Path: <internet-drafts@ietf.org>
X-Original-To: opsec@ietf.org
Delivered-To: opsec@ietfa.amsl.com
Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id E38B7C16951B; Fri, 3 Feb 2023 01:16:17 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: internet-drafts@ietf.org
To: i-d-announce@ietf.org
Cc: opsec@ietf.org
X-Test-IDTracker: no
X-IETF-IDTracker: 9.8.0
Auto-Submitted: auto-generated
Precedence: bulk
Reply-To: opsec@ietf.org
Message-ID: <167541577791.39593.13613254179600864064@ietfa.amsl.com>
Date: Fri, 03 Feb 2023 01:16:17 -0800
Archived-At: <https://mailarchive.ietf.org/arch/msg/opsec/fK3BOESg44BPOERZte76pACEElM>
Subject: [OPSEC] I-D Action: draft-ietf-opsec-indicators-of-compromise-04.txt
X-BeenThere: opsec@ietf.org
X-Mailman-Version: 2.1.39
List-Id: opsec wg mailing list <opsec.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/opsec>, <mailto:opsec-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/opsec/>
List-Post: <mailto:opsec@ietf.org>
List-Help: <mailto:opsec-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/opsec>, <mailto:opsec-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 03 Feb 2023 09:16:18 -0000

A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Operational Security Capabilities for IP Network Infrastructure WG of the IETF.

        Title           : Indicators of Compromise (IoCs) and Their Role in Attack Defence
        Authors         : Kirsty Paine
                          Ollie Whitehouse
                          James Sellwood
                          Andrew Shaw
  Filename        : draft-ietf-opsec-indicators-of-compromise-04.txt
  Pages           : 30
  Date            : 2023-02-03

Abstract:
   Cyber defenders frequently rely on Indicators of Compromise (IoCs) to
   identify, trace, and block malicious activity in networks or on
   endpoints.  This draft reviews the fundamentals, opportunities,
   operational limitations, and recommendations for IoC use.  It
   highlights the need for IoCs to be detectable in implementations of
   Internet protocols, tools, and technologies - both for the IoCs'
   initial discovery and their use in detection - and provides a
   foundation for approaches to operational challenges in network
   security.


The IETF datatracker status page for this draft is:
https://datatracker.ietf.org/doc/draft-ietf-opsec-indicators-of-compromise/

There is also an HTML version available at:
https://www.ietf.org/archive/id/draft-ietf-opsec-indicators-of-compromise-04.html

A diff from the previous version is available at:
https://author-tools.ietf.org/iddiff?url2=draft-ietf-opsec-indicators-of-compromise-04


Internet-Drafts are also available by rsync at rsync.ietf.org::internet-drafts

v2.23.0 | Report a Bug | By Email