OASIS Members,
OASIS is pleased to announce publication of "STIX/TAXII 2.0 Interoperability Test Document: Part 1 Version 1.1" and "STIX/TAXII 2.0 Interoperability Test Document: Part 2 Version 1.0", Committee Notes from the members of the OASIS Cyber Threat Intelligence (CTI) TC [1].
These test documents provide detailed requirements on how producers of products within the threat intelligence ecosystem may demonstrate and self-certify that their software is interoperable with other systems implementing STIX/TAXII 2.0.
There are six personas detailed in Part 1 of the Interoperability Test Document, which focuses primarily on conformity with STIX 2.0. These are:Â Data Feed Provider (DFP), Threat Intelligence Platform (TIP), Threat Mitigation System (TMS), Threat Detection System (TDS), Security Incident and Event Management (SIEM), and Threat Intelligence Sink (TIS). Part 1 defines tests of the following test cases: indicator sharing, sighting sharing, versioning, data markings, custom objects and properties, and course of action sharing.
There are eight personas detailed in Part 2 of the Interoperability Test Document. These include the six listed for Part 1, plus TAXII Feed (TXF) and TAXII Server (TXS). Part 2 defines tests of the following test cases: common connection, basic data sharing, and basic threat intelligence collaboration.
The Committee Notes are available here:
STIX/TAXII 2.0 Interoperability Test Document: Part 1 Version 1.1
Committee Note 01
16 August 2018
Editable source (Authoritative):
HTML:
PDF:
ZIP (complete package of the Committee Note):
STIX/TAXII 2.0 Interoperability Test Document: Part 2 Version 1.0
Committee Note 01
05 November 2018
Editable source (Authoritative):
HTML:
PDF:
ZIP:
Members of the CTI TC approved these Committee Notes by Full Majority electronic ballots on 16 August and 05 November 2018 [2].
Our congratulations to all the members of the TC.
========== Additional references:
[1] OASIS Cyber Threat Intelligence (CTI) TC
[2] ApprovalÂ