IODEF Versus ISI/ETSI
Added by Gilles Lehmann over 7 years ago
I just found this sentence in the French RGS :
"Â§V.2.1.pÂ : Il est recommandÃ© que le prestataire utilise le format des tickets dâ€™incident de sÃ©curitÃ© proposÃ© dans [ETSI_ISG_ISI]Â : Standards ETSI ISI Indicators (ISI 001-1 and Guides 001-2), ISI Event Model (ISI-002), ISI Maturity (ISI-003), ISI Event Detection (ISI-004) â€“ 5 standards sur la dÃ©tection des incidents de sÃ©curitÃ©."
From what I understood, ISI defines a taxonomy for incident which can help classify incidents but certainly not a "ticket" definition which would be more the role of IODEF.
There is certainly a possible collaboration between those two formats but ISI can't replace IODEF.
What do you think ?