RE: [cti-stix] Deterministic IDs - pas de deux

["Foley, Alexander - GIS" <alexander.foley@bankofamerica.com>]

Hey Marlon,

I believe this is one of those problems that could only be solved by a central registry of all identifiers, or perhaps by hashing the "relevant" content of a package to determine the ID.  I saw your comment on the ballot, but personally believe it's inevitable that we will have multiple STIX objects that are identical except for the IDs.  I think it's probably up to systems that store STIX to either modify these objects to deduplicate them or to put up with the duplicity.

Alex

-----Original Message-----
From: Taylor, Marlon [mailto:Marlon.Taylor@hq.dhs.gov] 
Sent: Friday, May 13, 2016 3:20 PM
To: 'Trey Darley'
Cc: Wunder, John A.; Foley, Alexander - GIS; Jordan, Bret; cti-stix@lists.oasis-open.org
Subject: RE: [cti-stix] Deterministic IDs - pas de deux

Hi Trey,

Sorry for the delay.  The ^ of Math...got it!

My last question is: does the TC want to support the ability of having multiple TLOs with the same data being addressed by different identifiers? The ballot will have the answer.

Thanks for the clarity,

-Marlon

-----Original Message-----
From: Trey Darley [mailto:trey@soltra.com]
Sent: Wednesday, May 11, 2016 5:54 AM
To: Taylor, Marlon
Cc: Wunder, John A.; Foley, Alexander - GIS; Jordan, Bret; cti-stix@lists.oasis-open.org
Subject: Re: [cti-stix] Deterministic IDs - pas de deux

On 10.05.2016 18:02:36, Taylor, Marlon wrote:
> What enforces the UUIDv4 that "identifies" Object A is not used to 
> identify Object B?
> 

Hey, Marlon -

It's enforced by math. According to Wikipedia [0], the probability of a UUIDv4 collision is approximately 0.00000000006. In other words, "only after generating 1 billion UUIDs every second for the next 100 years, the probability of creating just one duplicate would be about 50%." [0].

Add to that the namespace prefix and the probability of a collision decreases dramatically.

[0]: https://en.wikipedia.org/wiki/Universally_unique_identifier#Random_UUID_probability_of_duplicates

--
Cheers,
Trey
--
Trey Darley
Senior Security Engineer
4DAA 0A88 34BC 27C9 FD2B  A97E D3C6 5C74 0FB7 E430 Soltra | An FS-ISAC & DTCC Company www.soltra.com
--
"One size never fits all." --RFC 1925

----------------------------------------------------------------------
This message, and any attachments, is for the intended recipient(s) only, may contain information that is privileged, confidential and/or proprietary and subject to important terms and conditions available at http://www.bankofamerica.com/emaildisclaimer.   If you are not the intended recipient, please delete this message.