[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [cti-stix] Proposal: Addition of defined relationship from COA to Indicator
I too would support the addition of this defined relationship. The facility to create a “block” COA would be a significant step forward for us getting
indicators into our Protective DNS Service. Best wishes, Iain. --
Iain B. Cyber Operations National Cyber Security Centre iain.b@ncsc.gov.uk
| Mobile: 07469 357 625 | CISP username: iainb@ncsc https://www.ncsc.gov.uk
| Follow us on Twitter: @ncsc This information is exempt under the Freedom of Information Act 2000 (FOIA) and may be exempt under other UK information legislation. Refer any FOIA queries to
ncscinfoleg@ncsc.gov.uk From: cti-stix@lists.oasis-open.org <cti-stix@lists.oasis-open.org>
On Behalf Of Thompson, Dean Hi!, I would support this initiative, it is a good idea and simplifies the relationship between the two. Regards, Dean From: cti-stix@lists.oasis-open.org [mailto:cti-stix@lists.oasis-open.org]
On Behalf Of Jason Keirstead Scenario: Lets say you want to have an indicator feed that you want to provide to a DNS server, in order to either deny or sinkhole
those IP addresses and/or domains. As such, you want to provide Course of Action that are linked to those indicators, to tell the DNS server what to do. "This e-mail and any attachments to it (the "Communication") is, unless otherwise stated, confidential, may contain copyright material and is for the use only
of the intended recipient. If you receive the Communication in error, please notify the sender immediately by return e-mail, delete the Communication and the return e-mail, and do not read, copy, retransmit or otherwise deal with it. Any views expressed in
the Communication are those of the individual sender only, unless expressly stated to be those of Australia and New Zealand Banking Group Limited ABN 11 005 357 522, or any of its related entities including ANZ Bank New Zealand Limited (together "ANZ"). ANZ
does not accept liability in connection with the integrity of or errors in the Communication, computer virus, data corruption, interference or delay arising from or in respect of the Communication."
|
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]