Network Working Group J. Meijer Internet-Draft SURFnet bv Expires: September 29, 2003 R. Danyliw CERT Coordination Center Y. Demchenko NLnet Labs March 31, 2003 The Incident Data Exchange Format Data Model and XML Implementation draft-ietf-inch-iodef-01.txt Status of this Memo This document is an Internet-Draft and is in full conformance with all provisions of Section 10 of RFC2026. Internet-Drafts are working documents of the Internet Engineering Task Force (IETF), its areas, and its working groups. Note that other groups may also distribute working documents as Internet-Drafts. Internet-Drafts are draft documents valid for a maximum of six months and may be updated, replaced, or obsoleted by other documents at any time. It is inappropriate to use Internet-Drafts as reference material or to cite them other than as "work in progress." The list of current Internet-Drafts can be accessed at http:// www.ietf.org/ietf/1id-abstracts.txt. The list of Internet-Draft Shadow Directories can be accessed at http://www.ietf.org/shadow.html. This Internet-Draft will expire on September 29, 2003. Copyright Notice Copyright (C) The Internet Society (2003). All Rights Reserved. Abstract The purpose of the Incident Data Exchange Format (IODEF) is to define data formats for information related to computer security incidents typically exchanged between collaborating Computer Security Incident Response Teams (CSIRTs). The IODEF satisfies the requirements specified in RFCXXX [1] This Internet-Draft describes a data model for representing commonly exchanged incident information exported from incident handling systems managed by CSIRTs. An implementation of the data model in Meijer, et al. Expires September 29, 2003 [Page 1]