1 / 9

CTI CybOX SC Meeting

Reviewing CybOX 3.0 goals for simplification, ambiguity reduction, and refactoring entities for accuracy. Updates on CTI statistics and OASIS work products. Discussing high-level and object-level changes in roadmap. Approach to complex issues and upcoming meeting details.

sbrady
Download Presentation

CTI CybOX SC Meeting

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. www.oasis-open.org CTI CybOX SC Meeting October 29, 2015

  2. www.oasis-open.org Agenda • CybOX3.0 Roadmap Discussion • CTI Stats Update • OASIS Work Product Status & Discussion

  3. CybOX 3.0 Goals • Simplification • Reduction of ambiguity • Only one way of doing things • Refactoring of CybOX entities for accuracy, consistency, and to align with above goals • Core/Common Structures • Objects • A stable platform for future CybOX releases

  4. CybOX 3.0 Roadmap I • High-level changes (CybOX Core/Common) • Separation of patterns and instances • Domain specific patterning language? • First-class relationships • Aligned with STIX • Hash Capture refactoring • Others?

  5. CybOX 3.0 Roadmap II • Object-level changes • Focus on “core” Objects • Refactoring for semantic accuracy • File Object (and its derivatives) • System Object • Product Object • Expansion of “atomic” Objects • Breaking up Address Object • Others?

  6. CybOX 3.0 Approach • For smaller, less complex issues, Trey and I will create Wiki pages and submit them to the community for discussion and consensus • Some of the CybOX 3.0 issues (e.g., patterning refactoring) are difficult problems with a large scope • How should we approach them? • Editors? • Sub-sub committees?

  7. CTI Stats Update • https://github.com/Soltra/cti-stats • HailATaxii Statistics: • +-------CybOX stats-----------------------------------------------------++-------CybOX percentages-----------------------------------------------+ URI: 38.81% Address: 28.85% Port: 0.62% File: 0.30%DomainName: 31.41%+-------CybOX counts----------------------------------------------------+ URI: 192292 Address: 142963 Port: 3089 File: 1488DomainName: 155623Total CybOX objects: 495455

  8. OASIS Work Product Update • CybOX 2.1.1 • 12 specifications out of 94 reviewed and edited • https://github.com/CybOXProject/specifications/tree/master/documents • ETA: mid-late November

  9. Next meeting • Thursday, November 19th @ 3:00pm EDT

More Related