[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [cti-stix] Small changes from 2.0 - 2.1 - add relationship from indicator to vulnerability
We discussed this on one of our working calls when the change was initially proposed and I believe there was a bit of back and forth. In particular, this starts to intrude into the cyber assessments space
where standards like SCAP and tools like Inspec already have some traction. I personally would lean towards not adding this relationship to avoid getting in to that space, but if I’m the only one thinking that way that’s fine. John From: <cti-stix@lists.oasis-open.org> on behalf of Sarah Kelley <Sarah.Kelley@cisecurity.org> GITHUB issue # 15 (https://github.com/oasis-tcs/cti-stix2/issues/15 ) During the STIX 2.0 CSD comment period, we received a suggestion to add a relationship from an indicator to a vulnerability saying that an indicator “indicates” the vulnerability. The relationship table for indicator would then look like this (with the change highlighted in yellow):
Are there any objections to making this change? Thanks, Sarah Kelley Senior Cyber Threat Analyst Multi-State Information Sharing and Analysis Center (MS-ISAC) 31 Tech Valley Drive East Greenbush, NY 12061 518-266-3493 24x7 Security Operations Center SOC@cisecurity.org - 1-866-787-4722 This message and attachments may contain confidential information. If it appears that this message was sent to you by mistake, any retention, dissemination, distribution or copying of this message and attachments
is strictly prohibited. Please notify the sender immediately and permanently delete the message and any attachments.
|
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]