The IESG has approved the following document: - 'Indicators of Compromise (IoCs) and Their Role in Attack Defence' (draft-ietf-opsec-indicators-of-compromise-04.txt) as Informational RFC
This document is the product of the Operational Security Capabilities for IP Network Infrastructure Working Group. The IESG contact persons are Warren Kumari and Robert Wilton. A URL of this Internet Draft is: https://datatracker.ietf.org/doc/draft-ietf-opsec-indicators-of-compromise/ Technical Summary This draft reviews the fundamentals, opportunities, operational limitations, and best practices of Indicators of Compromise (IoC use). It highlights the need for IoCs to be detectable in implementations of Internet protocols, tools, and technologies - both for the IoCs' initial discovery and their use in detection - and provides a foundation for new approaches to operational challenges in network security. Working Group Summary There was no notable controversy - the document is a "tutorial/background/educational" type document, and this limits the controversy some. Document Quality The document is very readable - it provides useful and important OPSEC background. Personnel Jen Linkova is DS Warren Kumari is RAD!!!! _______________________________________________ OPSEC mailing list [email protected] https://www.ietf.org/mailman/listinfo/opsec
