The purpose of the Intrusion Detection Working Group is to define data formats and exchange procedures for sharing information of interest to intrusion detection and response systems, and to management systems which may need to interact with them. The Intrusion Detection Working Group will coordinate its efforts with other IETF Working Groups.
The outputs of this working group will be:
1. A requirements document, which describes the high-level functional requirements for communication between intrusion detection systems and requirements for communication between intrusion detection systems and with management systems, including the rationale for those requirements. Scenarios will be used to illustrate the requirements.
2. A common intrusion language specification, which describes data formats that satisfy the requirements.
3. A framework document, which identifies existing protocols best used for communication between intrusion detection systems, and describes how the devised data formats relate to them.
Done |    | Submit Requirements document as an Internet-Draft |
Done |    | Submit Framework and Language documents as Internet-Drafts |
Done |    | Submit Requirements document to IESG for consideration as an RFC. |
Done |    | Submit Language documents to IESG for consideration as RFCs. |
Done |    | Submitt transport documnet to IESG for consideration as RFCs |