[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [cti-stix] STIX/TAXII Vendor Self-Certification Program MOTION
|From:||"Allan Thomson" <firstname.lastname@example.org>|
|To:||email@example.com, "Interoperability Subcommittee" <firstname.lastname@example.org>|
|Date:||Mon, Oct 9, 2017 6:06 PM|
|Subject:||[cti-stix] STIX/TAXII Vendor Self-Certification Program MOTION|
Dear TC Members,
I motion that the TC approve, by unanimous consent, the following regarding the vendor self-certification program for TC approval.
If you have any concerns please reply to the list. If we need to discuss any changes then we can certainly consider a discussion at the F2F next week.
1. OASIS will create official STIX and TAXII interoperability badges for exclusive use by vendors of products that have passed the online self-certification tests. ("Products" may include services as well as software, to the extent the requirements are applicable in the test protocols named below.)
2. Products will be granted the right to use one of two available badges: a) STIX-only or b) STIX-and-TAXII. Since the TAXII test incorporates STIX, there will be no need for a TAXII-only badge and no benefit in offering multiple badges per product.
3. The interoperability badges will incorporate the STIX and TAXII logos. If possible, OASIS will update the current STIX and TAXII logo designs in a way that leverages current brand recognition but also conveys the exciting changes in 2.x. OASIS will continue to work with DHS to resolve trademark issues regarding the logos, and under current licensing, the launch and details of this program will be contingent on advance DHS approval.
This is a significant step towards formalizing interoperability testing and we look forward to your input/agreement.