[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [cti-taxii] Questioning the wisdom of using DNS SRV records for TAXII 2.0 Discovery
That is an excellent idea Trey. A list of DOs and DON'Ts would be very beneficial I expect. It would certainly help with interoperability! Cheers Terry MacDonald Senior STIX Subject Matter Expert SOLTRA | An FS-ISAC and DTCC Company +61 (407) 203 206 | terry@soltra.com -----Original Message----- From: Trey Darley Sent: Saturday, 31 October 2015 7:38 PM To: Jordan, Bret <bret.jordan@bluecoat.com> Cc: Terry MacDonald <terry@soltra.com>; cti-taxii@lists.oasis-open.org Subject: Re: [cti-taxii] Questioning the wisdom of using DNS SRV records for TAXII 2.0 Discovery On 30.10.2015 21:28:38, Jordan, Bret wrote: > > TAXII servers. So therefore the TAXII servers need to be hardened with > good coding standards and have controls put around them. > It would be worth threat modeling the TAXII 2.0 architecture (once the spec's closer to completion) with an eye towards generating a TAXII 2.0 security best practices guide for implementers as an OASIS work product. -- Cheers, Trey -- Trey Darley Senior Security Engineer 4DAA 0A88 34BC 27C9 FD2B A97E D3C6 5C74 0FB7 E430 Soltra | An FS-ISAC & DTCC Company www.soltra.com -- "With sufficient thrust, pigs fly just fine. However, this is not necessarily a good idea. It is hard to be sure where they are going to land, and it could be dangerous sitting under them as they fly overhead." --RFC 1925
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]