[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [cti-taxii] Question about multiple trust group support
Trey,
I’m not sure I have enough information to understand what you are proposing. I’d like to ask: ·
What use case or goal would the proposed capability support? Why would two vendors synchronize trust groups, and what parts would they synchronize? ·
Can you provide a more detail about what would be in the <soltra>…</soltra> tags? Thank you. -Mark From: cti-taxii@lists.oasis-open.org [mailto:cti-taxii@lists.oasis-open.org]
On Behalf Of Trey Darley Hey, Jason - Imagine that a large multinational corporation or informal sharing network (hub and spoke) wants to synchronize some or all of their TAXII trust groups.
As things currently stand, that would necessarily involve out-of-band (ie, non-TAXII) communication. What I'm proposing is an optional block for sharing trust group info. Soltra Edge can encapsulate its notion of trust group data inside the soltra block. If
Intelworks groks that, it can act on it. If not, it can safely disregard the data encapsulated in the block. (Or maybe, just maybe several vendors collaborate to support interoperability.) Extend the notion to n vendor-specific definition of trustgroups. TAXII can easily support sharing trustgroup information in-band without actually codifying
any particular notion in the standard. [again with the strawman] <trustgroups> <soltra> ... </soltra> <intelworks> ... </intelworks> <trustgroups> Cheers, Trey -- Trey Darley Senior Security Engineer Soltra | An FS-ISAC & DTCC Company
From: Jason Keirstead <Jason.Keirstead@ca.ibm.com> I am not sure I understand your proposal. What would be inside those blocks, and what is the purpose of exchanging that information from the server to the
client?
|
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]