Análise comparativa entre o IDXP e uma variante IDMEF

  • Renato D. R. Fonseca USP
  • Leonardo C. Militelli USP
  • Adilson E. Guelfi USP
  • Volnys B. Bernal USP
  • João Antônio Zuffo USP
DOI: https://doi.org/10.5753/sbseg.2005.21557

Abstract


IDXP uses the format IDMEF and proposes partner authentication, integrity and confidentiality using BEEP protocol. The objective this work is to propose integration between IDMEF with an xml digital signature, called IDMEF variant, providing message’s security using any communication protocol. As the result, this paper discusses a comparative analysis between the IDXP protocol and the IDMEF variant.

References

Bace, R; Mell, P; "Intrusion Detection Systems", NIST National Institute of Standards and Technology, Special Publication, 2001.

Buchheim, T.; Erlinger, M.; Feinstein, B.; Matthews, G.; Pollock, R.; Betser, J.; Walther, A.; "Implementing the Intrusion Detection Exchange protocol"; Computer Security Applications Conference, ACSAC 2001. Proceedings 17th Annual, 2001

Centner, M.; "XML Advanced Electronic Signatures", Master Thesis, 2004

Debar, H.; Curry, D.; Feinstein, B.; "The Intrusion Detection Message Exchange Format", 2005. Draft-ietf-idwg-idmef-xml-14, trabalho em andamento.

Davis, D., "Defective Sign & Encrypt in S/MIME PKCS7, MOSS, PEM, PGP, and XML", Proceedings of the 2001 USENIX Annual Technical Conference.

Feinstein, B.; Matthews, G.; White, J.; "The Intrusion Detection Exchange Protocol (IDXP)", 2002, draft-ietf-idwg-beep-idxp-07, trabalho em andamento.

Poppi, S.; Migus, A.; McAlerney, J.; "LibIDMEF" http://sourceforge.net/projects/libidmef/, consulta ao site junho de 2005.

RSA Laboratories, RSA Security; "PKCS-7: Cryptographic Message Syntax Standard", consulta ao site em Junho de 2005, 1993.

Dierks, T.; Allen, C., "The TLS Protocol, Version 1.0", IETF, 1999. Disponível em http://www.faqs.org/rfcs/rfc2246.html.

Thayer, R.; Doraswamy, N.; Glenn R., "RFC 2411: IP Security", IETF, 1998. Disponível em http://www.faqs.org/rfcs/rfc2411.html.

Rose, M.; RFC 3080: "The Blocks Extensible Exchange Protocol Core", IETF, 2001. Disponível em http://www.faqs.org/rfcs/rfc3080.html.

World Wide Web Consortium (W3C). XML Advanced Electronic Signatures (XAdES), W3C, 2003

World Wide Web Consortium (W3C). XML - Signature Syntax and Processing (XMLDSig), W3C Recommendation, 2002

Wood, M; Erlinger, M; "Intrusion Detection Message Exchange Requirements", 2002, trabalho em andamento.

Zimmermann, P., "The Official PGP User's Guide," MIT Press, 1995.
Published
2005-09-26
How to Cite

Select a Format
FONSECA, Renato D. R.; MILITELLI, Leonardo C.; GUELFI, Adilson E.; BERNAL, Volnys B.; ZUFFO, João Antônio. Análise comparativa entre o IDXP e uma variante IDMEF. In: BRAZILIAN SYMPOSIUM ON CYBERSECURITY (SBSEG), 5. , 2005, Florianópolis. Anais [...]. Porto Alegre: Sociedade Brasileira de Computação, 2005 . p. 355-358. DOI: https://doi.org/10.5753/sbseg.2005.21557.