OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

cti-stix message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Observed Data Proposal for Malware / Infrastructure

I wanted to share out a proposal to revise the Observed Data object that Gary
put together in order to allow mappings from STIX objects into the content of
the Observed Data  block while still respecting existing mappings.

This should allow for infrastructure and malware objects to more easily
reference fully mapped observed data graphs while limiting the overhead
associated with creating large numbers of additional observed data objects.

Jeffrey Mates, Civ DC3/DCCI
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Computer Scientist
Defense Cyber Crime Institute
jeffrey.mates@dc3.mil
410-694-4335

Attachment: Observed Data Presentation.pptx
Description: application/vnd.openxmlformats-officedocument.presentationml.presentation

Attachment: Observed_data2.json
Description: Binary data

Attachment: Observed_data1.json
Description: Binary data

Attachment: smime.p7s
Description: S/MIME cryptographic signature

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]