IDMEFv2

New Standard Format for Incident Reporting

The security of digital and physical systems is becoming increasingly complex. IDMEFv2 (Incident Detection Message Exchange Format) provides a universal format to report and analyze cyber and physical incidents in a structured way.

Examples of such incidents include:

• a virus in an email
• a server outage
• an intruder in a building
• unusual sensor readings

IDMEFv2 enables the correlation of different events to better detect complex or combined incidents.

The format can be used in cybersecurity solutions (antivirus, firewall, SIEM), physical security solutions (CCTV, motion sensors, PSIM), or in combined environments. Technically, IDMEFv2 is based on JSON and can be transmitted over HTTPS.

More Info is available on the Website of the Safe4SOC Project and the official IDMEFv2 Website.

About the project: Safe4SOC

Standard Alert Format Exchange for SOCs

SAFE4SOC is dedicated to enhancing the cyber threat detection and response capabilities of entities across the public and private sectors. By focusing on the refinement and standardization of the IDMEFv2 format, our project facilitates a seamless, structured, and AI-enhanced exchange of cybersecurity information. This initiative aims to streamline the interoperability between detection tools and cybersecurity management consoles, significantly improving the speed and accuracy of threat response actions across the cybersecurity ecosystem.