Some other comments
3) I think this voting needs to be moved to a SurveyMonkey and we need to add the options of "abstain" and "I do not know what this means".
We must also add 'Yes in a simplified form' or some option like that. The reason I didnt respond on the list to the previous MVP list was that in some instances I thought I would vote yes for a 'simple' initial version of the functionality, but no to a full version of the functionality. If we keep in mind the 80/20 rule then in a lot of cases the first basic version of the functionality may cover the 80% and we can work in the 20% in future versions.
5) If the feature is not used in mass today, then it probably does not warrant being an MVP item. Not used == not used. I am sure between Soltra and EclecticIQ they can give us some great metrics.
I disagree here. We are (hopefully) improving STIX with additional functionality that didn't exist in STIX v1.2. I'm thinking of the ability to relate any object to any other object, third party relationships, possibly the ability to send opinion objects showing if you agree with content someone else sent. All this is stuff that isn't used because it currently doesn't exist. So hopefully that is taken into account.
6) The current list represents a LOT of stuff. Keep in mind that it may take groups 2-5 years to full support everything in that list. That means in the mean time you will have a lot of products that are NOT compatible with each other. Can you imaging the conformance issues that this will cause? Keep in mind that even Soltra Edge does not fully support STIX 1.2 and how long ago did that come out.
This is where reducing the requirements to only a basic set of functionality can help. We can try out and see if it works well enough.
10) Things we do not understand well or that are not really used should be pushed to a 2.x release.
Agreed.
Cheers
Terry MacDonald | Chief Product Officer
On Wed, Apr 6, 2016 at 2:30 AM, Jordan, Bret <bret.jordan@bluecoat.com> wrote:
All,I have a few concerns with the current MVP items as discussed on the call today1) We need a statistically significant number of people to vote, before we can decide if it is in or out.2) I feel that some of the items in the list are not well understood, and thus we got mixed voting.3) I think this voting needs to be moved to a SurveyMonkey and we need to add the options of "abstain" and "I do not know what this means".4) Things that have 100% votes, should be in, and we should do those first.5) If the feature is not used in mass today, then it probably does not warrant being an MVP item. Not used == not used. I am sure between Soltra and EclecticIQ they can give us some great metrics.6) The current list represents a LOT of stuff. Keep in mind that it may take groups 2-5 years to full support everything in that list. That means in the mean time you will have a lot of products that are NOT compatible with each other. Can you imaging the conformance issues that this will cause? Keep in mind that even Soltra Edge does not fully support STIX 1.2 and how long ago did that come out.7) If the 2.0 MVP does not have everything that a group needs, say the USG. Then they can keep using STIX 1.2 until such a time that the 2.x tree does have what they need. I do not believe any of us are saying that people need to switch from STIX 1.2 to STIX 2.0 on day one.8) For orgs that are currently using STIX 1.2. You will probably not want to switch to the 2.x family until about 2.2 or 2.3, would be my finger to the wind guess.9) For orgs that are not yet doing anything with STIX yet, what is the bare minimum that you need to make a solution work.10) Things we do not understand well or that are not really used should be pushed to a 2.x release.Thanks,BretBret Jordan CISSPDirector of Security Architecture and Standards | Office of the CTOBlue Coat SystemsPGP Fingerprint: 63B4 FC53 680A 6B7D 1447 F2C0 74F8 ACAE 7415 0050"Without cryptography vihv vivc ce xhrnrw, however, the only thing that can not be unscrambled is an egg."