Technical Summary
This draft reviews the fundamentals, opportunities, operational limitations, and best practices of Indicators of Compromise (IoC use).
It highlights the need for IoCs to be detectable in implementations of Internet protocols, tools, and technologies - both for the IoCs' initial discovery and their use in detection - and provides a foundation for new approaches to operational challenges in network security.
Working Group Summary
There was no notable controversy - the document is a "tutorial/background/educational" type document, and this limits the controversy some.
Document Quality
The document is very readable - it provides useful and important OPSEC background.
Personnel
Jen Linkova is DS
Warren Kumari is RAD!!!!