IDS mailing list archives
SDEE vs IDMEF ?
From: Sebastien Tricaud <toady () gscore org>
Date: Wed, 10 Mar 2004 23:25:31 -0800
Hi everybody, According to this press release: http://www.trusecure.com/company/press/pr_20040223.shtml SDEE is a Network Intrusion Detection System Alert Format. However, there's already IDMEF (Intrusion Detection Message Exchange Format) for that purpose. You can find the latest IDMEF draft there: http://www1.ietf.org/internet-drafts/draft-ietf-idwg-idmef-xml-11.txt IDMEF will become standardized shortly, I wonder why Cisco, ISS and Sourcefire joined their forces to do something similar. Any idea ? Thanks, Sebastien.
Attachment:
signature.asc
Description: This is a digitally signed message part
Current thread:
- SDEE vs IDMEF ? Sebastien Tricaud (Mar 12)
- RE: SDEE vs IDMEF ? Rob Shein (Mar 15)
- RE: SDEE vs IDMEF ? Yoann Vandoorselaere (Mar 15)
- <Possible follow-ups>
- RE: SDEE vs IDMEF ? Kohlenberg, Toby (Mar 15)
- RE: SDEE vs IDMEF ? Yoann Vandoorselaere (Mar 15)
- RE: SDEE vs IDMEF ? Rob Shein (Mar 15)