SDEE vs IDMEF ?
From: Sebastien Tricaud (toady_at_gscore.org)
To: email@example.com Date: Wed, 10 Mar 2004 23:25:31 -0800
According to this press release:
SDEE is a Network Intrusion Detection System Alert Format.
However, there's already IDMEF (Intrusion Detection Message Exchange
Format) for that purpose. You can find the latest IDMEF draft there:
IDMEF will become standardized shortly, I wonder why Cisco, ISS and
Sourcefire joined their forces to do something similar. Any idea ?
- application/pgp-signature attachment: This is a digitally signed message part