cti message
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]
Subject: Re: [cti] Re: [EXT] Re: [cti] STIX Design principles
- From: "Jason Keirstead" <Jason.Keirstead@ca.ibm.com>
- To: Bret Jordan <Bret_Jordan@symantec.com>
- Date: Wed, 30 Aug 2017 15:07:04 -0300
I second what Brett is saying... while
I like the diagram and the general idea there are some things in here I
think would need to be debated as to what is meant.
-
Jason Keirstead
STSM, Product Architect, Security Intelligence, IBM Security Systems
www.ibm.com/security
Without data, all you are is just another person with an opinion - Unknown
From:
Bret Jordan <Bret_Jordan@symantec.com>
To:
"JG @ OASIS"
<jg@ctin.us>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>
Date:
08/30/2017 02:54 PM
Subject:
[cti] Re: [EXT]
Re: [cti] STIX Design principles
Sent by:
<cti@lists.oasis-open.org>
I like the graphic... But then I
always prefer graphics to relay complicated information. We will
need to find time to debate each of these elements though. That may
take some time.
Bret
From: cti@lists.oasis-open.org <cti@lists.oasis-open.org>
on behalf of JG @ OASIS <jg@ctin.us>
Sent: Wednesday, August 30, 2017 11:44:21 AM
To: cti@lists.oasis-open.org
Subject: [EXT] Re: [cti] STIX Design principles
Terry:
Nice graphic.
I think we should take action on these principles and, if adopted, we
should add your graphic to the FAQ that is currently under development
Jane
On 8/30/2017 12:01 AM, Andras Iklody wrote:
> Excellent!
>
> On 30. aug. 2017 06:12, Terry MacDonald wrote:
>> Hi All,
>>
>> We currently have a draft STIX Design Principles section in the
CTI FAQ
>> document
>> <https://clicktime.symantec.com/a/1/KvfVu0z0MphDmjgNQXrNUmDpka87O5qoS5X0svOF3-c=?d=5TqcBke04amO17aP6liB7Tq2RZeI96HPpnLuLPpgF-RH0xb83EJMcYXKOn20Am0kUwF_ufwBrjUHff4emKI9a64XLhBTx5-jLLOWNKIKGsEF-8XT3IkzxIwQBNpHYIdMZxVRSQOrsB5ovgbchIzV7ZDKW9RdIMm5xoUEFJoSvCXyt9SSkLSN2qwFW6ZnkT4k0nIX1P2p5bQ2r_QlYiLJKB9vrlviv4jw7-LvCW5mgFxgqFlgvBSyAvbVbYtPQR5CSk8rCgMT9mDqfMUdXMLriFcOENDCsUGTqdn1Qik7R1VczNYjaFDKXf5urCmLr5j15jWTiZWmPyFd-bteAPC9PMqmqg-1CqMhIcOTxcm8Aa-JD81eFrCBNBg6hKYL9daGFt8FkRcpxjxHuJ56bpdsRWaYg6YEwJmbn02C9I8wLg%3D%3D&u=https%3A%2F%2Fdocs.google.com%2Fdocument%2Fd%2F1V5tE78N10McUq1xUOHV1RTVsOoYmiq_xt2PY1YI8bsU%2Fedit%23heading%3Dh.4jifh0wn2c2f>,
>> but I don't feel that it goes far enough. So I've put together
6
>> principles that I would like to propose that we adopt at the STIX
SC level:
>>
>> / //
>>
>>
>> I believe that having defined principles and their supporting
guidance
>> defined to this level will help us compare competing proposals
against
>> each other, and will help us figure out which ones make the most
sense.
>> We keep having the same conversations again and again, and I feel
this
>> will go someway towards shortcuting those discussions
>>
>> I should note that I will also be suggesting some draft design
patterns
>> that would work in conjunction with these design principles, that
would
>> reflect the 'standard way' that certain things are done in STIX
2.1,
>> such as when to use external relationships vs embedded relationships,
>> when is does a new concept warrant a new object, etc.
>>
>> The design patterns will require discussion and expansion to reflect
>> what the community thinks, but I really do feel that these will
help us
>> in the long run.
>>
>> Cheers
>>
>> *Terry MacDonald *| Chief Product Officer
>>
>>
>>
>> M: +64 211 918 814 <tel:+64+211+918+814>
>> E: terry.macdonald@cosive.com <mailto:terry.macdonald@cosive.com>
>> W: www.cosive.com<https://clicktime.symantec.com/a/1/_fRo78BhmgJ9ntkAJJDVNEdLnZ8Zh6UeUXjqkdM5UwA=?d=5TqcBke04amO17aP6liB7Tq2RZeI96HPpnLuLPpgF-RH0xb83EJMcYXKOn20Am0kUwF_ufwBrjUHff4emKI9a64XLhBTx5-jLLOWNKIKGsEF-8XT3IkzxIwQBNpHYIdMZxVRSQOrsB5ovgbchIzV7ZDKW9RdIMm5xoUEFJoSvCXyt9SSkLSN2qwFW6ZnkT4k0nIX1P2p5bQ2r_QlYiLJKB9vrlviv4jw7-LvCW5mgFxgqFlgvBSyAvbVbYtPQR5CSk8rCgMT9mDqfMUdXMLriFcOENDCsUGTqdn1Qik7R1VczNYjaFDKXf5urCmLr5j15jWTiZWmPyFd-bteAPC9PMqmqg-1CqMhIcOTxcm8Aa-JD81eFrCBNBg6hKYL9daGFt8FkRcpxjxHuJ56bpdsRWaYg6YEwJmbn02C9I8wLg%3D%3D&u=https%3A%2F%2Fwww.cosive.com%2F>
>>
>>
>>
>>
>>
>>
>> ---------------------------------------------------------------------
>> To unsubscribe from this mail list, you must leave the OASIS TC
that
>> generates this mail. Follow this link to all your TCs in
OASIS at:
>> https://clicktime.symantec.com/a/1/1__8OOfCwuV66H5uAZh90Fe_spsMZ_p-QjmQs_x7U_8=?d=5TqcBke04amO17aP6liB7Tq2RZeI96HPpnLuLPpgF-RH0xb83EJMcYXKOn20Am0kUwF_ufwBrjUHff4emKI9a64XLhBTx5-jLLOWNKIKGsEF-8XT3IkzxIwQBNpHYIdMZxVRSQOrsB5ovgbchIzV7ZDKW9RdIMm5xoUEFJoSvCXyt9SSkLSN2qwFW6ZnkT4k0nIX1P2p5bQ2r_QlYiLJKB9vrlviv4jw7-LvCW5mgFxgqFlgvBSyAvbVbYtPQR5CSk8rCgMT9mDqfMUdXMLriFcOENDCsUGTqdn1Qik7R1VczNYjaFDKXf5urCmLr5j15jWTiZWmPyFd-bteAPC9PMqmqg-1CqMhIcOTxcm8Aa-JD81eFrCBNBg6hKYL9daGFt8FkRcpxjxHuJ56bpdsRWaYg6YEwJmbn02C9I8wLg%3D%3D&u=https%3A%2F%2Fwww.oasis-open.org%2Fapps%2Forg%2Fworkgroup%2Fportal%2Fmy_workgroups.php
>>
> ---------------------------------------------------------------------
> To unsubscribe from this mail list, you must leave the OASIS TC that
> generates this mail. Follow this link to all your TCs in OASIS
at:
> https://clicktime.symantec.com/a/1/1__8OOfCwuV66H5uAZh90Fe_spsMZ_p-QjmQs_x7U_8=?d=5TqcBke04amO17aP6liB7Tq2RZeI96HPpnLuLPpgF-RH0xb83EJMcYXKOn20Am0kUwF_ufwBrjUHff4emKI9a64XLhBTx5-jLLOWNKIKGsEF-8XT3IkzxIwQBNpHYIdMZxVRSQOrsB5ovgbchIzV7ZDKW9RdIMm5xoUEFJoSvCXyt9SSkLSN2qwFW6ZnkT4k0nIX1P2p5bQ2r_QlYiLJKB9vrlviv4jw7-LvCW5mgFxgqFlgvBSyAvbVbYtPQR5CSk8rCgMT9mDqfMUdXMLriFcOENDCsUGTqdn1Qik7R1VczNYjaFDKXf5urCmLr5j15jWTiZWmPyFd-bteAPC9PMqmqg-1CqMhIcOTxcm8Aa-JD81eFrCBNBg6hKYL9daGFt8FkRcpxjxHuJ56bpdsRWaYg6YEwJmbn02C9I8wLg%3D%3D&u=https%3A%2F%2Fwww.oasis-open.org%2Fapps%2Forg%2Fworkgroup%2Fportal%2Fmy_workgroups.php
>
--
R. Jane Ginn, MSIA, MRP
Secretary, Cyber Threat Intelligence Technical Committee (CTI TC)
OASIS
jg@ctin.us
+1(928)399-0509
---------------------------------------------------------------------
To unsubscribe from this mail list, you must leave the OASIS TC that
generates this mail. Follow this link to all your TCs in OASIS at:
https://clicktime.symantec.com/a/1/1__8OOfCwuV66H5uAZh90Fe_spsMZ_p-QjmQs_x7U_8=?d=5TqcBke04amO17aP6liB7Tq2RZeI96HPpnLuLPpgF-RH0xb83EJMcYXKOn20Am0kUwF_ufwBrjUHff4emKI9a64XLhBTx5-jLLOWNKIKGsEF-8XT3IkzxIwQBNpHYIdMZxVRSQOrsB5ovgbchIzV7ZDKW9RdIMm5xoUEFJoSvCXyt9SSkLSN2qwFW6ZnkT4k0nIX1P2p5bQ2r_QlYiLJKB9vrlviv4jw7-LvCW5mgFxgqFlgvBSyAvbVbYtPQR5CSk8rCgMT9mDqfMUdXMLriFcOENDCsUGTqdn1Qik7R1VczNYjaFDKXf5urCmLr5j15jWTiZWmPyFd-bteAPC9PMqmqg-1CqMhIcOTxcm8Aa-JD81eFrCBNBg6hKYL9daGFt8FkRcpxjxHuJ56bpdsRWaYg6YEwJmbn02C9I8wLg%3D%3D&u=https%3A%2F%2Fwww.oasis-open.org%2Fapps%2Forg%2Fworkgroup%2Fportal%2Fmy_workgroups.php
[Date Prev]
| [Thread Prev]
| [Thread Next]
| [Date Next]
--
[Date Index]
| [Thread Index]
| [List Home]