Ballot Details: Approve STIX 2.0 Working Draft 1 as a Committee Specification Draft (CLOSED)

Ballot Question Do you approve STIX 2.0 Working Draft 1 and all associated artifacts packaged together as a Committee Specification Draft (CSD) and designate the Microsoft™ Word version as authoritative?
Ballot Description The .zip file containing the Multi-part CSD is provided here:

https://www.oasis-open.org/committees/document.php?document_id=59847&wg_abbrev=cti

The Five Parts of the Multi-Part CSD are as follows:

1. stix-v2.0-wd01-part1-stix-core
2. stix-v2.0-wd01-part2-stix-objects
3. stix-v2.0-wd01-part3-cyber-observable-core
4. stix-v2.0-wd01-part4-cyber-observable-objects
5. stix-v2.0-wd01-part5-stix-patterning
Ballot Options
VOTING CLOSED: Friday, 3 February 2017 @ 8:00 pm EST
Yes 38 100
No 0 0
Abstain 1
Open Date Friday, 20 January 2017 @ 8:00 pm EST
Close Date Friday, 3 February 2017 @ 8:00 pm EST
Ballot Type Official, as defined by organization policies and procedures

Voting Statistics

Number of votes cast (excluding abstentions) 38
Eligible members who have voted 39 of 59 66.102%
Eligible members who have not voted 20 of 59 33.898%

Voting Summary by Option

Options with highest number of votes are bold
Option # Votes % of Total
Yes 38 100%
No 0 0%
Abstain 1

Voting Details

Voter Name Company Vote * Time (UTC) Comments
* Allor, Peter IBM Yes 2017-01-26 17:37:00
* Anderson, John NC4 Yes 2017-01-23 12:56:00
* Back, Greg Mitre Corporation Yes 2017-01-23 21:13:00
* Baker, Jonathan Mitre Corporation Yes 2017-01-23 12:35:00
* Bohling, James US Department of Defense (DoD) Yes 2017-02-02 14:32:00
* Brown, Iain GDS Yes 2017-01-23 10:55:00
* Butt, Michael NC4 Yes 2017-01-23 13:51:00
* Casey, Tim Intel Corporation Yes 2017-01-26 18:14:00
* Coderre, Robert VeriSign Yes 2017-01-27 02:08:00
* Darley, Trey Kingfisher Operations, sprl Yes 2017-01-21 10:18:00
* Davidson, Mark NC4 Yes 2017-01-23 12:50:00
* Ginn, Jane Cyber Threat Intelligence Network, Inc. (C... Yes 2017-01-21 01:12:00
* Gurney, John-Mark New Context Services, Inc. Yes 2017-02-01 23:25:00
* Hunt, Christian New Context Services, Inc. Yes 2017-01-26 16:59:00
* Jordan, Bret Symantec Corp. Yes 2017-01-21 01:11:00
* Kakumaru, Takahiro NEC Corporation Yes 2017-01-26 16:26:00
* Katz, Gary US Department of Defense (DoD) Yes 2017-01-23 20:19:00
* Keirstead, Jason IBM Yes 2017-01-21 01:12:00
* Kelley, Sarah Center for Internet Security (CIS) Yes 2017-01-23 13:05:00
* Kirillov, Ivan Mitre Corporation Yes 2017-01-23 17:44:00
* Lenk, Chris Mitre Corporation Yes 2017-01-26 17:03:00
* MacDonald, Terry Individual Yes 2017-01-22 20:41:00
* Maroney, Patrick Wapack Labs LLC Yes 2017-01-23 18:09:00
* Masuoka, Ryusuke Fujitsu Limited Yes 2017-01-27 04:57:00
* Patrick, Paul FireEye, Inc. Yes 2017-02-02 22:44:00
* Piazza, Richard Mitre Corporation Yes 2017-01-22 15:12:00
* Pumo, Beth Kaiser Permanente Yes 2017-01-26 16:03:00
* Riedel, Daniel New Context Services, Inc. Yes 2017-01-27 02:19:00
* Shok, Richard U.S. Bank Yes 2017-01-26 16:58:00
* Storms, Andrew New Context Services, Inc. Yes 2017-01-21 01:20:00
* Struse, Richard DHS Office of Cybersecurity and Communicat... Yes 2017-01-23 21:30:00
* Suarez, Natalie NC4 Yes 2017-01-23 13:26:00
* Thomson, Allan LookingGlass Yes 2017-01-21 15:08:00
* Truslove, Ian LookingGlass Yes 2017-01-23 15:40:00
* Urbanski, Will Dell Yes 2017-01-25 23:32:00
* Williams, Ron IBM Yes 2017-01-26 19:55:00
* Wood, Chris LookingGlass Yes 2017-01-23 12:59:00
* Wunder, John Mitre Corporation Yes 2017-01-21 01:13:00
* Taylor, Marlon DHS Office of Cybersecurity and Communicat... Abstain 2017-01-30 21:46:00 1
* Aabol, Jens Difi-Agency for Public Management and eGov... --
* Algar, Jonathan GDS --
* Barnum, Sean Mitre Corporation --
* Chernin, Aharon Perch --
* Foley, Alexander Bank of America --
* Gong, Nicole Mitre Corporation --
* Jones, Elysa Individual --
* Mates, Jeffrey US Department of Defense (DoD) --
* Maxwell, Kyle VeriSign --
* McLellan, Mike GDS --
* Noguchi, Kazuo Hitachi, Ltd. --
* Pandya, Shyamal FireEye, Inc. --
* Pepin, Michael NC4 --
* Reaume, Greg TELUS --
* Rutkowski, Anthony Yanna Technologies LLC --
* Sander, Tomas Hewlett Packard Enterprise (HPE) --
* Taylor, Chris GDS --
* Terada, Masato Hitachi, Ltd. --
* Thompson, Dean Australia and New Zealand Banking Group (A... --
* Thomson, Laurie GDS --

Voter Comments

Submitter Vote Comment
Taylor, Marlon
DHS Office of Cybersecurity and Communicat...		 Abstain STIX Objects are organized into "SDO"s and "SRO"s. SROs are limited in the fact they can not be used as a "source" or "target" of a relationship. The working draft doesn't provide rules for determining what factors go in to considering whether an object should be a SDO or SRO. As the list of STIX Objects extends upon this version, the question of "whether an object should is (or should be) an SDO or SRO?" will continue to arise and we as a technical committee should provide clear documentation to explain how objects are categorized. Without doing so now, while we have already categorized objects and claimed unique features for each category, we leave ourselves open to inconsistencies.

We should provide clear documentation for determining SDO or SRO categorization and ensure our existing objects align accordingly.