OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

cti message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Groups - STIX 2 Signature Object proposal uploaded

Submitter's message
Please review this updated document before Tuesday's meeting.

This has been updated to address the following items:
1. Add Alternate Identity to make key management easier for large organizations.
2. Talk about revoking Signature Objects.
3. Add a bit of wording about how signing objects are best ability, not guaranteed to be true/correct.
4. Add ability for an Identity to indicate all CTI will be signed, and any unsigned objects must be considered invalid.

Pointer 4 brought up a thought of added a field for a TAXII server that can be used to fetch Signature Objects.

There are other minor editorial changes made a well.
-- John-Mark Gurney
Document Name: STIX 2 Signature Object proposal
Description
This is a proposal for implementing signatures for STIX objects.
Download Latest Revision
Public Download Link
Submitter: John-Mark Gurney
Group: OASIS Cyber Threat Intelligence (CTI) TC
Folder: Working Drafts
Date submitted: 2022-02-25 15:30:25
Revision: 1

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]