datatracker.ietf.org
Sign in
Version 5.3.0, 2014-04-12
Report a bug

GRC Report Exchange
draft-ietf-mile-grc-exchange-01

Document type: Expired Internet-Draft (mile WG)
Document stream: IETF
Last updated: 2013-05-10 (latest revision 2012-11-06)
Intended RFC status: Unknown
Other versions: (expired, archived): plain text, pdf, html

IETF State: WG Document
Consensus: Unknown
Document shepherd: No shepherd assigned

IESG State: Expired
Responsible AD: (None)
Send notices to: No addresses provided

This Internet-Draft is no longer active. Unofficial copies of old Internet-Drafts can be found here:
http://tools.ietf.org/id/draft-ietf-mile-grc-exchange

Abstract

Governance, risk, and compliance (GRC) programs provide oversight (governance) of risks and compliance initiatives within an organization. GRC reports are increasingly provided in an XML format. This specification defines a common method to securely transport GRC and other XML reports. The defined messaging capability provides policy options and markings in an XML schema, options for confidentiality at the document/report level, and security for the end-to-end communication. XML reports may be shared between service providers and clients, enterprises, or within enterprises. Reports may also be exchanged for official purposes such as business report filings, compliance report filings, and the handling of legal incidents (eWarrant, eDiscovery, etc.) This work is a generalized format derived from the secure exchange of incident information defined by RFC6545, Real-time Inter-network Defense (RID).

Authors

Kathleen Moriarty <Kathleen.Moriarty@emc.com>
Said Tabet <said.tabet@emc.com>
David Waltermire <david.waltermire@nist.gov>

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid)