| rfc9424v4.txt | rfc9424.txt | |||
|---|---|---|---|---|
| Internet Engineering Task Force (IETF) K. Paine | Internet Engineering Task Force (IETF) K. Paine | |||
| Request for Comments: 9424 Splunk Inc. | Request for Comments: 9424 Splunk Inc. | |||
| Category: Informational O. Whitehouse | Category: Informational O. Whitehouse | |||
| ISSN: 2070-1721 Binary Firefly | ISSN: 2070-1721 Binary Firefly | |||
| J. Sellwood | J. Sellwood | |||
| A. Shaw | A. Shaw | |||
| UK National Cyber Security Centre | UK National Cyber Security Centre | |||
| June 2023 | August 2023 | |||
| Indicators of Compromise (IoCs) and Their Role in Attack Defence | Indicators of Compromise (IoCs) and Their Role in Attack Defence | |||
| Abstract | Abstract | |||
| Cyber defenders frequently rely on Indicators of Compromise (IoCs) to | Cyber defenders frequently rely on Indicators of Compromise (IoCs) to | |||
| identify, trace, and block malicious activity in networks or on | identify, trace, and block malicious activity in networks or on | |||
| endpoints. This document reviews the fundamentals, opportunities, | endpoints. This document reviews the fundamentals, opportunities, | |||
| operational limitations, and recommendations for IoC use. It | operational limitations, and recommendations for IoC use. It | |||
| highlights the need for IoCs to be detectable in implementations of | highlights the need for IoCs to be detectable in implementations of | |||
| End of changes. 1 change blocks. | ||||
| 1 lines changed or deleted | 1 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. | ||||