[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [cti-stix] Re: Object ID format
I agree that “wholesale webification” likely does not make sense but being able to offer resolvable IDs for content to trusted parties and filtering what goes out based on trust and access permissions would be very powerful. It has potential value for rapid access to content, federated analysis, federated visualization, etc. sean On 1/21/16, 4:10 AM, "Trey Darley" <cti-stix@lists.oasis-open.org on behalf of trey@soltra.com> wrote: >On 21.01.2016 02:01:35, John Anderson wrote: >> >> What about actual URLs? (Not URIs [1].) Let's actually use http: and >> make our Resources resolvable via the Web. (And maybe even let >> Google index some of them!) >> > >Hey, John - > >Threat intel is less than worthless if your adversary knows what you >know. Wholesale webification of CTI is no panacea. > >-- >Cheers, >Trey >-- >Trey Darley >Senior Security Engineer >4DAA 0A88 34BC 27C9 FD2B A97E D3C6 5C74 0FB7 E430 >Soltra | An FS-ISAC & DTCC Company >www.soltra.com >-- >"With sufficient thrust, pigs fly just fine. However, this is not >necessarily a good idea. It is hard to be sure where they are going to >land, and it could be dangerous sitting under them as they fly >overhead." --RFC 1925
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]