Resource-Oriented Lightweight Indicator Exchange
This is an older version of an Internet-Draft that was ultimately published as RFC 8322.
Expired & archived
|Author||John P. Field|
|Last updated||2015-06-08 (Latest revision 2014-12-05)|
|RFC stream||Internet Engineering Task Force (IETF)|
ARTART Last Call review (of -10) Almost Ready
GENART Telechat review (of -10) Ready with Nits
|Additional resources||Mailing list discussion|
|Stream||WG state||WG Document|
|Send notices to||(None)|
This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:
This document defines a resource-oriented approach to cyber security information sharing. Using this approach, a CSIRT or other stakeholder may share and exchange representations of cyber security incidents, indicators, and other related information as Web- addressable resources. The transport protocol binding is specified as HTTP(S) with a MIME media type of Atom+XML. An appropriate set of link relation types specific to cyber security information sharing is defined. The resource representations leverage the existing IODEF [RFC5070] and RID [RFC6545] specifications as appropriate. Coexistence with deployments that conform to existing specifications including RID [RFC6545] and Transport of Real-time Inter-network Defense (RID) Messages over HTTP/TLS [RFC6546] is supported via appropriate use of HTTP status codes.
(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)