cti-taxii message
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]
Subject: Re: [cti-taxii] Re: [External] [cti-taxii] New properties for TAXII 2.1
- From: "Jason Keirstead" <Jason.Keirstead@ca.ibm.com>
- To: "Maxwell, Kyle R." <kyle.r.maxwell@accenture.com>
- Date: Fri, 11 Aug 2017 09:07:37 -0300
My proposal was that it would be on the
TAXII collection, not the objects.
required_markings="TLP" on
a collection means that every object submitted must contain a TLP marking,
if it does not, it is rejected.
-
Jason Keirstead
STSM, Product Architect, Security Intelligence, IBM Security Systems
www.ibm.com/security
Without data, all you are is just another person with an opinion - Unknown
From:
"Maxwell, Kyle
R." <kyle.r.maxwell@accenture.com>
To:
Bret Jordan <Bret_Jordan@symantec.com>,
"cti-taxii@lists.oasis-open.org" <cti-taxii@lists.oasis-open.org>
Date:
08/10/2017 06:29 PM
Subject:
[cti-taxii]
Re: [External] [cti-taxii] New properties for TAXII 2.1
Sent by:
<cti-taxii@lists.oasis-open.org>
Is the intent that these properties
live within TAXII or on the STIX objects themselves?
From: <cti-taxii@lists.oasis-open.org>
on behalf of Bret Jordan <Bret_Jordan@symantec.com>
Date: Thursday, August 10, 2017 at 2:51 PM
To: "cti-taxii@lists.oasis-open.org" <cti-taxii@lists.oasis-open.org>
Subject: [External] [cti-taxii] New properties for TAXII 2.1
All,
It has been proposed that we add some
properties to collections to help identify what data markings are needed
/ supported in this collection. One driving aspect is with the upcoming
IEP policy stuff.
It has been proposed that we add something
like the following two properties:
supported_markings
required_markings
The property terms may need to be word
smithed and we need to figure out how to best capture the data. But
the question right now is, should we support this functionality on collections?
If so, I will add them to the TAXII
2.1 working specification so that we can being work on what they will mean.
Bret
This message is for the designated recipient only and may contain privileged,
proprietary, or otherwise confidential information. If you have received
it in error, please notify the sender immediately and delete the original.
Any other use of the e-mail by you is prohibited. Where allowed by local
law, electronic communications with Accenture and its affiliates, including
e-mail and instant messaging (including content), may be scanned by our
systems for the purposes of information security and assessment of internal
compliance with Accenture policy.
______________________________________________________________________________________
www.accenture.com
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]