cti-cybox message

Subject: Re: [cti-cybox] CybOX Object Selection

From: Patrick Maroney <Pmaroney@Specere.org>
To: "Kirillov, Ivan A." <ikirillov@mitre.org>, "cti-cybox@lists.oasis-open.org" <cti-cybox@lists.oasis-open.org>
Date: Tue, 23 Feb 2016 20:17:39 +0000

Ivan,

Not clear from your comment that this use case is fully represented. The capture and conveyance of malicious/subverted/compromised X509 Certificates is unfortunately a common Use Case/Scenario. Therefore should be part of what we can represent.

Patrick Maroney

Office: (856)983-0001

Cell: (609)841-5104

President

Integrated Networking Technologies, Inc.

PO Box 569

Marlton, NJ 08053

From: <cti-cybox@lists.oasis-open.org> on behalf of Ivan Kirillov <ikirillov@mitre.org>
Date: Tuesday, February 23, 2016 at 1:13 PM
To: "cti-cybox@lists.oasis-open.org" <cti-cybox@lists.oasis-open.org>
Subject: Re: [cti-cybox] CybOX Object Selection

X509 Certificate:
- Comments: this Object is used only in a CybOX utility, though its structure is well understood and there are some relevant use cases around it such as digital binary signing. Therefore, I would err on the side of including it.

Follow-Ups:
- Re: [cti-cybox] CybOX Object Selection
  - From: "Barnum, Sean D." <sbarnum@mitre.org>

References:
- Re: [cti-cybox] CybOX Object Selection
  - From: "Kirillov, Ivan A." <ikirillov@mitre.org>
- Re: [cti-cybox] CybOX Object Selection
  - From: "Jason Keirstead" <Jason.Keirstead@ca.ibm.com>
- Re: [cti-cybox] CybOX Object Selection
  - From: "Jason Keirstead" <Jason.Keirstead@ca.ibm.com>
- Re: [cti-cybox] CybOX Object Selection
  - From: "Jordan, Bret" <bret.jordan@bluecoat.com>
- Re: [cti-cybox] CybOX Object Selection
  - From: Patrick Maroney <Pmaroney@Specere.org>
- Re: [cti-cybox] CybOX Object Selection
  - From: "Kirillov, Ivan A." <ikirillov@mitre.org>
- Re: [cti-cybox] CybOX Object Selection
  - From: "Kirillov, Ivan A." <ikirillov@mitre.org>
- Re: [cti-cybox] CybOX Object Selection
  - From: "Kirillov, Ivan A." <ikirillov@mitre.org>