Digital Signatures is on my personal list of things I would like to see for STIX 2.1. Once we do them, we can do things like confidence, opinions, assertions, etc.
Thanks,
Bret Bret Jordan CISSPDirector of Security Architecture and Standards | Office of the CTO Blue Coat Systems PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050 "Without cryptography vihv vivc ce xhrnrw, however, the only thing that can not be unscrambled is an egg."
I do understand that and agree for the majority of cases. To give a -special case- often coming as a concern/question about CTI: What would happen if an adversary introduces fake/disinformation/counter-CTI? Yes, one could use Confidence/Opinion/Judgment But I'm looking for an answer to this, imho, valid concern.
Thanks Best regards On Sunday, 24 July 2016, Joep Gommers < joep@eclecticiq.com> wrote: For what its worth I’d be interested in this discussion because;
- it makes completely sense that only you can reversion your own intelligence, or people from your namespace, considering your conveying your analysis and insights - not to mention conflicts of merging etc
- its among the most requested features from our customer/prospect base who view it more as a knowledge base then a collection of our people’s analysis fused with their own (namespace)
On 7/23/16, 6:12 AM, "cti-stix@lists.oasis-open.org on behalf of Jerome Athias" <cti-stix@lists.oasis-open.org on behalf of athiasjerome@gmail.com> wrote:
>Hi,
>
>Reviewing the current draft, I would have this question regarding Versioning:
>(The Only Stupid Question is the One You Don't Ask)
>
>"Only the object creator is permitted to create new versions of a STIX
>Object. Producers other than the object creator MUST NOT create new
>versions of that object."
>vs "Derived Object"
>
>Question: If I want to derive (duplicate/enhance - create a "new
>version" of) one STIX Object (object creator=Org A), as-is, is there a
>mechanism for me (Org B) to reference the ID of the initial Object?
>
>
>
>PS:
>"As with issuing a new version, only the object creator is permitted
>to revoke a STIX object."
>Note: this could have to be reevaluated, investigated further in the future.
>
>---------------------------------------------------------------------
>To unsubscribe from this mail list, you must leave the OASIS TC that
>generates this mail. Follow this link to all your TCs in OASIS at:
>https://www.oasis-open.org/apps/org/workgroup/portal/my_workgroups.php
>
|