Members of the OASIS Cyber Threat Intelligence (CTI) TC [1] approved advancing STIX v2.1 CS03 and TAXII v2.1 CS01 to the membership as candidates for OASIS Standard.
Structured Threat Information Expression (STIX) is a language and serialization format used to exchange cyber threat intelligence. STIX enables organizations and tools to share threat intelligence with one another in a way that improves many different capabilities, such as collaborative threat analysis, automated threat exchange, automated detection and response, and more. Note that Committee Specification 03 was produced to correct non-material changes discovered during the 60-day public review. This was done in accordance with the procedures outlined in section 2.8.2 of the TC Process (https://www.oasis-open.org/policies-guidelines/tc-process-2017-05-26/#OSpublicRev).
The TC received 11 Statements of Use from Accenture Security, Anomali, Avast Software s.r.o., CISA, DarkLight, Inc., EclecticIQ B.V., Fujitsu, IBM, New Context, SEKOIA, and Trend Micro [2].
TAXII is an application layer protocol for the communication of cyber threat information in a simple and scalable manner. it is specifically designed to support the exchange of CTI represented in STIX, but is not limited to STIX.
The TC received 10 Statements of Use from Avast Software s.r.o., Celerium, CISA, Cyware Labs, EclecticIQ B.V., FreeTAXII, Fujitsu, SEKOIA, and Trend Micro [3].
This is a call to the Organizational Members of OASIS to consent or object to this approval. You are welcome to register your consent explicitly on the ballot; however your consent is assumed unless you register an objection [4]. To register an objection, you must:
1. Indicate your objection on this ballot, and
2. Provide a reason for your objection and/or a proposed remedy to the TC.
You may provide the reason in the comment box or by email to the Technical Committee on its comment mailing list or, if you are a member of the TC, to the TC's mailing list [5]. If you provide your reason by email, please indicate in the subject line that this is in regard to the Call for Consent. Note that failing to provide a reason and/or remedy may result in an objection being deemed invalid.
URIs:
The prose specification document and related files are available here:
* STIX Version 2.1
Committee Specification 03
21 May 2021
Editable source (Authoritative):
https://docs.oasis-open.org/cti/stix/v2.1/cs03/stix-v2.1-cs03.docx
HTML:
https://docs.oasis-open.org/cti/stix/v2.1/cs03/stix-v2.1-cs03.html
PDF:
https://docs.oasis-open.org/cti/stix/v2.1/cs03/stix-v2.1-cs03.pdf
ZIP distribution file:
https://docs.oasis-open.org/cti/stix/v2.1/cs03/stix-v2.1-cs03.zip
* TAXII Version 2.1
Committee Specification 01
27 January 2020
Editable source (Authoritative):
https://docs.oasis-open.org/cti/taxii/v2.1/cs01/taxii-v2.1-cs01.docx
HTML:
https://docs.oasis-open.org/cti/taxii/v2.1/cs01/taxii-v2.1-cs01.html
PDF:
https://docs.oasis-open.org/cti/taxii/v2.1/cs01/taxii-v2.1-cs01.pdf
ZIP distribution file:
https://docs.oasis-open.org/cti/taxii/v2.1/cs01/taxii-v2.1-cs01.zip
Please contact OASIS TC Administration at tc-admin@lists.oasis-open.org with any questions you may have about this ballot.
--- Additional information ---
[1] OASIS Cyber Threat Intelligence (CTI) TC
https://www.oasis-open.org/committees/cti/
[2] STIX statements of use
- Accenture Security:
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202102/msg00006.html
- Anomali
https://lists.oasis-open.org/archives/cti/202103/msg00029.html
- Avast Software s.r.o.
https://lists.oasis-open.org/archives/cti/202103/msg00016.html
- CISA (Cybersecurity and Infrastructure Security Agency)
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202102/msg00022.html
- DarkLight, Inc
https://lists.oasis-open.org/archives/cti/202103/msg00015.html
- EclecticIQ B.V.
https://lists.oasis-open.org/archives/cti/202102/msg00027.html
- Fujitsu:
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202102/msg00005.html
- IBM
https://lists.oasis-open.org/archives/cti/202103/msg00036.html
- New Context:
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202101/msg00027.html
- SEKOIA
https://lists.oasis-open.org/archives/cti/202102/msg00012.html
- Trend Micro
https://lists.oasis-open.org/archives/cti/202102/msg00021.html
[3] TAXII Statements of Use
- Avast Software s.r.o.
https://lists.oasis-open.org/archives/cti/202104/msg00014.html
- Celerium:
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202007/msg00002.html
- CISA (Cybersecurity and Infrastructure Security Agency)
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202102/msg00022.html
- Cyware Labs:
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202007/msg00033.html
- EclecticIQ B.V.
https://lists.oasis-open.org/archives/cti/202102/msg00027.html
- FreeTAXII
https://lists.oasis-open.org/archives/cti/202101/msg00028.html
- Fujitsu
https://lists.oasis-open.org/archives/cti/202102/msg00005.html
- SEKOIA
https://lists.oasis-open.org/archives/cti/202102/msg00012.html
- Trend Micro
https://lists.oasis-open.org/archives/cti/202102/msg00021.html
[4] https://www.oasis-open.org/policies-guidelines/tc-process-2017-05-26#OScallForConsent
[5] Comments may be submitted to the TC through the use of the OASIS TC Comment Facility as explained in the instructions located at https://www.oasis-open.org/committees/comments/index.php?wg_abbrev=cti
Comments submitted to the TC are publicly archived and can be viewed at https://lists.oasis-open.org/archives/cti-comment/
Members of the TC should send comments directly to cti@lists.oasis-open.org. |
