Hi Folk,
is logstash support Collect, Enrich & Transport Data normalized in IDMEF (Intrusion Detection Message Exchange Format) format ?
IDMEF it's define data formats and exchange procedures for sharing information of interest to intrusion detection and response systems and to the management systems that may need to interact with them. You can find all what you need about IDMEF in http://ietf.org/rfc/rfc4765.txt or throw this PDF http://ietf.org/rfc/rfc4765.txt.pdf.
cheers,