Terena Title Logo  
decoration line

navigation button: home navigation button: programme navigation button: meetings navigation button: social navigation button: registration navigation button: venue navigation button: credits navigation button: contacts navigation button: sponsorship navigation button: search
decoration line

TERENA Logo small


IODEF is a format designed to exchange computer security incident related information between CSIRTs. The format started out as a development of TF-CSIRT and has been adopted by the IETF-INCH workinggroup. The past and present of IODEF will be explored as will the envisioned future.

Much of the current data-exchange between CSIRTs, whether it is for acute incident handling, gathering of statistical information, vulnerability information exchange and so on, is based mostly on a free-form or at best ad-hoc formatting basis. Many people perform many copy-and-paste actions of emails into trouble-ticket systems. The general idea behind IODEF is that it should provide an extensible framework to cover the incident-handling related data-exchange between CSIRTs, and enable them to highly automate this process. IODEF in its current incarnation is an XML implementation and describes a datamodel. The first extension to provide real-time DDoS handling is in the works. More information on IODEF is to be found at http://www.iodef.org/



This presentation is part of session "Threat Handling" which starts at Tuesday, June 8 @ 11:00


Home | Programme | Meetings | Social | Registration | Venue | Credits | Contacts | Sponsorship | Search back to top
Last modified on the 15th 2004f June 2004 - 12:35