+1 for the use of the word "communication".
I personally would urge everyone not to use the word "sharing" in a CTI standards conversation. [Quote me now, I have a few talks in titled, "Why cyber intelligence 'sharing' is a BAD word."] - It limits the standards to something that only happens externally
to an organization and sets us up for failure when others don't "share" back. (eg. "sharing" isn't happening when we surf the Internet, it's machines communicating with each other).
Thanks for the listening.
Sent: Tuesday, September 15, 2015 11:19 AM
To: Jordan, Bret
Cc: Aharon Chernin; cti-taxii@lists.oasis-open.org; Wunder, John A.; Mark Davidson
Subject: Re: [cti-taxii] Vision Statement for TAXII
Yes I think that sounds a lot better. Communicating or transmitting.
-
Jason Keirstead
Product Architect, Security Intelligence, IBM Security Systems
www.ibm.com/security | www.securityintelligence.com
Without data, all you are is just another person with an opinion - Unknown
"Jordan,
Bret" ---2015/09/15 02:32:53 PM---I agree with this point as well... @Jason, would communicating or a verb like it, be more to your l
From: "Jordan, Bret" <bret.jordan@bluecoat.com>
To: Aharon Chernin <achernin@soltra.com>
Cc: Jason Keirstead/CanEast/IBM@IBMCA, Mark Davidson <mdavidson@mitre.org>, "Wunder, John A." <jwunder@mitre.org>, "cti-taxii@lists.oasis-open.org" <cti-taxii@lists.oasis-open.org>
Date: 2015/09/15 02:32 PM
Subject: Re: [cti-taxii] Vision Statement for TAXII
I agree with this point as well... @Jason, would communicating or a verb like it, be more to your liking and fit in more with what you are thinking?
Thanks,
Bret
Bret Jordan CISSP
Director of Security Architecture and Standards | Office of the CTO
Blue Coat Systems
PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050
"Without cryptography vihv vivc ce xhrnrw, however, the only thing that can not be unscrambled is an egg."
-
On Sep 15, 2015, at 11:11, Aharon Chernin <achernin@soltra.com> wrote:
I agree with Jason. The term sharing has really gotten our industry in a lot of trouble. I am actually jealous of the IT networking industry as they do the same thing, but it’s called “communication” instead of sharing. People worry a lot more about sharing than they do about communicating.
Aharon
From: <cti-taxii@lists.oasis-open.org> on behalf of Jason Keirstead
Date: Tuesday, September 15, 2015 at 1:07 PM
To: "Davidson II, Mark S"
Cc: "Wunder, John A.", "'cti-taxii@lists.oasis-open.org'"
Subject: RE: [cti-taxii] RE: Vision Statement for TAXII
TAXII is not only about sharing, it is also about the simple goal of being able to transmit CTI from one product to another. When I connect to an internal FTP server and download something, we don't think of this as the server "sharing" with me. You could call this "sharing" I suppose, but people do not think of information transfer in t