[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [cti] CTI TC Adoption and Interoperability SCs
What do you mean by "information source integrity"?
From: <cti@lists.oasis-open.org> on behalf of "Jordan, Bret"
Date: Monday, July 13, 2015 at 2:37 PM To: Jason Keirstead Cc: "cti@lists.oasis-open.org" Subject: Re: [cti] CTI TC Adoption and Interoperability SCs
Okay, now I think we are getting out of the weeds and moving forward, so what about this, with the changes from Jason and Eric.
For STIX:
Does your product support:
S1) Data marking / handing
S2) Information source integrity
S3) The required fields from the following STIX Idioms
a) Indicators
b) Incidents
c) Threat Actors
d) Campaigns
e) TTPs
f) Course of Actions
g) Exploit Targets
h) Observables
S4) The required fields from the following CybOX objects
i) TBD
S5) Do you support STIX Profile processing for the following profiles
a) TBD
b) TBD
Optional Extras You Might Support (this is meant to give extra color / context to differentiate products)
SA) Do you have a UI for STIX generation
For TAXII:
Does your product support:
T1) Discovery Services
T2) Collection Services
T3) Subscription Services
T4) Poll Services
T5) Inbox Services
T6) Data Feeds
T7) Data Collections
T8) Delete Requests
Optional Extras You Might Support
TA) Authentication
TB) Two-factor Authentication
Thanks,
Bret
Bret Jordan CISSP
Director of Security Architecture and Standards | Office of the CTO
Blue Coat Systems
PGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050
"Without cryptography vihv vivc ce xhrnrw, however, the only thing that can not be unscrambled is an egg."
|
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]