Re: [cti] STIX 2.1 WD09 for CSD05

["Jason Keirstead" <Jason.Keirstead@ca.ibm.com>]

I want to express publically that I do not support this draft, as it contains a lot of highly controversial text in section 7.3.

Furthermore I believe that this text does not reflect the consensus of the working group who worked on this, nor does it reflect the consensus of the TC based on mailing list commentary.

In it's current form, I would not vote to approve this. I would vote against, and encourage others to do the same.
 

-
Jason Keirstead
Distinguished Engineer, CTO - IBM Security Threat Management
www.ibm.com/security

Co-Chair - Open Cybersecurity Alliance, Project Governing Board

www.opencybersecurityalliance.org
 

 

 

----- Original message -----
From: Bret Jordan <bret.jordan@broadcom.com>
Sent by: <cti@lists.oasis-open.org>
To: OASIS CTI TC Discussion List <cti@lists.oasis-open.org>
Cc:
Subject: [EXTERNAL] [cti] STIX 2.1 WD09 for CSD05
Date: Mon, Nov 16, 2020 6:50 PM
 

All,

 

The editors have finished addressing the comments and suggestions that have been made thus far. We have a version of the document for your consideration. NOTE: this version does not yet have the stub for an incident object that TC members have asked for. So that will be in the next version. Please review the following sections:

 

3.2 - Extensions Property 

7.3 - The entire section 

11 - Note how we deprecated the custom properties sections

12.3.3 - Conformance language

Appendix C.2

 

Rich P will be submitting the stub language for Incident probably tomorrow. 

 

Thanks,

Bret

PGP Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 0050

"Without cryptography vihv vivc ce xhrnrw, however, the only thing that can not be unscrambled is an egg."