@techreport{lehmann-idmefv2-https-transport-03, number = {draft-lehmann-idmefv2-https-transport-03}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-lehmann-idmefv2-https-transport/03/}, author = {Gilles Lehmann}, title = {{Transport of Incident Detection Message Exchange Format version 2 (IDMEFv2) Messages over HTTPS}}, pagetotal = 17, year = 2024, month = oct, day = 2, abstract = {The Incident Detection Message Exchange Format version 2 (IDMEFv2) defines a data representation for security incidents detected on cyber and/or physical infrastructures. The format is agnostic so it can be used in standalone or combined cyber (SIEM), physical (PSIM) and availability (NMS) monitoring systems. IDMEFv2 can also be used to represent man made or natural hazards threats. IDMEFv2 improves situational awareness by facilitating correlation of multiple types of events using the same base format thus enabling efficient detection of complex and combined cyber and physical attacks and incidents. This document defines a way to transport IDMEFv2 Alerts over HTTPs. If approved this document would obsolete RFC4767.}, }