OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

cti-stix message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Re: [cti-stix] A TAXII v2.0 Proposal with STIX implications

I agree w/ the proposal.

One minor comment is that you should probably combine the encryption and tamper-proof sections.  The reason is that any new protocol should only ever use AEAD encryption which provides both the encryption and the tamper-proof parts together.

On Tue, Aug 25, 2015 at 9:34 PM, Terry MacDonald <terry.macdonald@threatloop.com> wrote:
Hi All,

Over the past few weeks I've been pondering how we could improve STIX and TAXII as many others have been, and I've come up with a proposal that I'd like to share. I normally would only post this to the cti-taxii list, but as it potentially impacts STIX I think it's worth posting to the sti-stix list as well. Apologies if you get two copies.

As it has lots of pretty pictures, rather than send it out in email, I've put it here: 
http://blog.threatloop.com/post/127598238937/taxii-stix-v20-proposal

I'd really appreciate your thoughts.

Cheers

Terry MacDonald | STIX, TAXII, CybOX Consultant




Disclaimer: The opinions expressed within this email do not represent the sentiment of any other party except my own. My views do not necessarily reflect those of my employers.

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]