OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.

 


Help: OASIS Mailing Lists Help | MarkMail Help

cyber-council message

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]

Subject: Why you should attend Nov-6 meeting

The primary purpose of this email is to encourage you to attend the next
Cyber Standards Council meeting on November 6th
(https://www.oasis-open.org/apps/org/workgroup/cyber-council/event.php?event_id=45939)
where Sounil Yu (SVP at Bank of America, CoChair of OpenC2 TC) will be
updating the Users Council on the work on OpenC2.

Why attend the meeting and learn about OpenC2? Sounil will make the case
better than I, but I will provide a teaser. At IACD Community Day in
2016, Johns Hopkins University Applied Physics Lab presented their
findings on adopting IACD automation including OpenC2. Attached is their
slide. The original is at
https://secwww.jhuapl.edu/IACD/Resources/Community_Day/03_23_2017/IACD_CommDay_23March17_APL.pdf
(slide 24) and is rather busy so I’ve magnified what I consider three
very important findings:
- a five order of magnitude increase in triage capacity 
    + i.e. computers scale better than humans
- a two order of magnitude increase in mitigating indicators 
    + i.e. SOC analysts can now get to everything not just the ‘top
priority’
- a two order of magnitude decrease in the time to complete mitigations 
    + i.e. the attackers were kicked out much much sooner, reducing the
damage they could do

It’s these orders-of-magnitude improvements we need to level the
playing field with the attackers.

Find our more by attending 6-Nov Standards User Council.


Duncan Sparrell
sFractal Consulting LLC
iPhone, iTypo, iApologize



-------- Original Message --------
Subject: [cti-users] Respond faster to cyber-attacks with OpenC2
standard
From: "Dee Schur" <dee.schur@oasis-open.org>
Date: Wed, October 25, 2017 1:09 pm
To: <openc2@lists.oasis-open.org>, <cti@lists.oasis-open.org>,
<cti-marketing@lists.oasis-open.org>, <csaf@lists.oasis-open.org>,
<sarif@lists.oasis-open.org>, <cti-users@lists.oasis-open.org>

Cyber threats are realized in seconds while human responses can take
weeks.  By providing a common language
for machine-to-machine communication, the OpenC2 interoperability
standard makes it possible for defenders
to conduct automated, coordinated, tactical threat responses more
accurately and at speeds greater than
those previously possible.

The Cybersecurity Standards User Council invites you to attend an online
public briefing on OpenC2. Bank of
America's Sounil Yu will provide an update on the status of OpenC2's
development and solicit community feedback
on prioritizing issues and feature requests.

This 30-minute briefing will be held Nov 6 at 17:00 UTC (noon ET US).
Please register in advance at:

https://oasis-open.webex.com/oasis-open/onstage/g.php?MTID=eb80c718531b0eed07bcb8b8cfabb9b9b

Please feel free to contact me with any questions regarding the OpenC2
briefing.
 
Regards,
Dee
 
Borderless Cyber Conference and FIRST Technical Symposium
http://eu17.first-oasis-conference.org/en/
 
 
Dee Schur
Senior Manager, Development & Advocacy
OASIS | Advancing open standards for the information society 
+1.781.425.5073 x211 (Office) | +1.941.321.6733 (Cell)
http://www.oasis-open.org

Follow OASIS on:
LinkedIn:    http://linkd.in/OASISopen
Twitter:        http://twitter.com/OASISopen
Facebook:  http://facebook.com/oasis.open
YouTube:    http://www.youtube.com/oasisopen

Attachment: JHUAPL.png
Description: PNG image

[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]