The WP6 is responsible of IDMEFv2 dissemination through the open-source community and compatibility with commercial software.
The following tasks are set:
Task 6.1Open-source detection tools will implement IDMEFv2 “compatibility”in major open-source security tools. Level of compatibility will be define depending on tools capacities. Tools of multiple categories will be chosen (FW, AV, etc.) The development will be pushed to the tool community (pull request). A minimum of 10 tools is aimed (Suricata, Samhain, Ossec, Wazuh, Kismet, etc.).
Task 6.2Open-source security management tools will implement IDMEFv2“compatibility”in major open-source security management tools. Level of compatibility will be define depending on tools capacities. The development will be pushed to the tool community (pull request). A minimum of 5 tools is aimed (e.g. Graylog, Elastic, etc.).
Task 6.3Commercial Tools will propose an assistance to implement IDMEFv2 compatibility for commercial tools. A minimum of 10 tools is aimed. The developed open-source codes will be made available either via the source code control system of the target tools (as pull requests for instance) or via the SAFE4SOC source code control system.
