CTI CybOX SC Meeting www.oasis-open.org December 17, 2015.

Slides:

Advertisements

Similar presentations

OASIS OData Technical Committee. AGENDA Introduction OASIS OData Technical Committee OData Overview Work of the Technical Committee Q&A.

Advertisements

SARs Total: 14,730 Suspicious Activity Report Filing Trend for the State of Nebraska For the period April 1, 1996 through December 31, 2006.

Stop Programming and Start Modeling: Developing Work- Centered Semantic Applications † Semantic Technology Conference May 23, 2007 Andrew Crapo Amy Aragones,

Guide To UNIX Using Linux Third Edition

Update the PATH variable Trying to run the command: “javac Ex1.java” you’ve may encountered the error: “javac is not recognized as internal or external.

System Software Operating System Boot Process Files Misc.

Access Control Problem A primary consideration in object- oriented design is to “separate the things that change from the things that stay.

Computer Systems Week 10: File Organisation Alma Whitfield.

Dean Cheng Jouni Korhonen Mehamed Boucadair

Mapping between SOS standard specifications and INSPIRE legislation. Relationship between SOS and D2.9 Matthes Rieke, Dr. Albert Remke (m.rieke,

Thursday, December 5 th, 2013 Cause & Effect Review Jeopardy.

Reviewing Recent ICSE Proceedings For:.  Defining and Continuous Checking of Structural Program Dependencies  Automatic Inference of Structural Changes.

CTI STIX SC Monthly Meeting August 19, 2015.

UNIX Commands. Why UNIX Commands Are Noninteractive Command may take input from the output of another command (filters). May be scheduled to run at specific.

Presence Data Model Jonathan Rosenberg. Changes in -02 Split out data and processing models Allow multiple devices, services, person with same URI/device.

Updates made to latest draft since Herndon Sony Corporation Toshiaki Kojima.

Header Compression over Unidirectional Lightweight Encryption (ULE) draft-byun-ipdvb-ule-header-comp Do J. Byun John Border Roderick Ragland.

Agenda 5 minutes: WG Overview, announcements 10 minutes: Document plans 30 minutes: Interoperability Experience 10 minutes: Timezone Registry work Links:

Intrusion Detection State of the Art/Practice Anita Jones University of Virginia.

Λειτουργικά Συστήματα - Lab1 Γιάννης Πετράκης. The Operating System  Unix is a layered operating system  The innermost layer is the hardware that provides.

LEAD. TRANSFORM. DELIVER. The GTAS Webinar will begin shortly. Please put your phone on mute.

Dictionary based interchanges for iSURF -An Interoperability Service Utility for Collaborative Supply Chain Planning across Multiple Domains David Webber.

UBL: Library Content subcommittee Tim McGrath, Chair San Francisco, USA 3 November 2003.

FIMS Specification Group EBU-AMWA FIMS July 2011.

Querying Directory Contents Copyright © The University of Edinburgh 2011 This work is licensed under the Creative Commons Attribution License See

Plug-in Architectures Presented by Truc Nguyen. What’s a plug-in? “a type of program that tightly integrates with a larger application to add a special.

Access Control Lesson Introduction ●Understand the importance of access control ●Explore ways in which access control can be implemented ●Understand how.

CTI STIX SC Monthly Meeting October 21, 2015.

CTI CybOX SC Meeting November 19, 2015.

CTI CybOX SC Meeting October 29, 2015.

CTI CybOX SC Meeting September 24, 2015.

CTI CybOX SC Meeting August 27, 2015.

Ch. Eick: Some Ideas for Task4 Project2 Ideas on Creating Summaries that Characterize Clustering Results Focus: Primary Focus Cluster Summarization (what.

CTI STIX SC Status Report October 22, 2015.

Hyperion Artifact Life Cycle Management Agenda  Overview  Demo  Tips & Tricks  Takeaways  Queries.

® IBM Software Group © 2006 IBM Corporation Rational Asset Manager v7.2 Using Scripting Tutorial for using command line and scripting using Ant Tasks Carlos.

CTI STIX SC Monthly Meeting December 23, 2015.

Bertrand Russell ( ) From The Problems of Philosophy (1912)  Truth & Falsehood  Knowledge, Error, & Probable Opinion  The Limits of Philosophical.

Personal Home Pages in Academia: the Medium, its Adopters, and their Practices Proposal Follow-up Meeting Jochen “Je77” Rick.

Draft way Forward on Access Control Model and associated Terminology Group Name: SEC Source: Dragan Vujcic, Oberthur Technologies,

CTI STIX SC Status Report December 10, 2015.

#SummitNow Building a Quick Solution with Alfresco Workdesk 13. November 2013 Richard McKnight - Alfresco Christian Finzel - Alfresco.

© 2014 IBM Corporation External Collaboration IBM Connections 5.0 Workshop IBM Ecosystem Development Duration: 30 minutes.

IETF YANG models for VLAN interface classification draft-wilton-netmod-intf-vlan-yang Robert Wilton (Cisco)

Search Engine and Optimization 1. Introduction to Web Search Engines 2.

OASIS CTI F2F – CybOX Session 1 January 14, 2016.

1.2 Reasoning Mathematically Two Types of Reasoning Remember to Silence Your Cell Phone and Put It in Your Bag!

OCF Data Model Michael J Koster.

Editing Pathway/Genome Databases

Indication rules and set filtering Harvard University April 18-19

Cyber Observable Patterning

Commands Basic syntax of shell commands UNIX or shell commands have a basic structure command -options target command comes first (such as cd or ls) any.

Phonegap Bridge – File System and File Transfer

Graphing a System of Inequalities

Cyber Standards User Council CTI-TC STIX Subcommittee Update

The Ontological Argument

CTI TC Monthly Meeting Updates Session #1: 11:00 AM EST

Briefing on STIX | TAXII

The Ontological Argument

CTI Specification Organization

Artificial Intelligence

Sightings and Observations

STIR WG IETF-99 PASSPorT Extension for Resource-Priority Authorization (draft-ietf-stir-rph-00) July, 2017 Ray P. Singh, Martin Dolly, Subir Das, and An.

CTI STIX SC Monthly Meeting

Status OpenSearch Standardisation Activities - HMA-S Project

REPUTE Document Status

IPPC Member Consultation 1 July to 1 December 2013

Zoning Map Modernization with GIS

OBSERVER DATA MANAGEMENT PRINCIPLES AND BEST PRACTICE (Agenda Item 4)

Introduction to Operating Systems

Presentation transcript:

CTI CybOX SC Meeting December 17, 2015

Agenda Recent Discussion Recap Device/System Object Refactoring Discussion Extensions Draft Face to Face Agenda OASIS Work Product Update

Recent Discussion Recap I File Object Refactoring File metadata properties More explicit directory characterization FieldTypeMultiplicityDescription is_directoryboolean1 A required flag that indicates whether the file object instance represents a directory (if TRUE) or a file (if FALSE). file_namestring0-1 The name of the file, including its extension (if known) but excluding its path. This field may only be included ONLY IF the is_directory property is set to FALSE. file_pathFilePath0-1 The path to the file on the file system, excluding its name and extension. If this field is included without the file_name field, the file object instance specifies a directory. FieldTypeMultiplicityDescription extension_typestring1 Specifies the type of this extension; required and MUST be set to 'FileMetadataExtension' mime_typestring0-1 The MIME type name from the IANA media type registry ( specified for the file, e.g., "msword".

Recent Discussion Recap II Capture of Analytical Observations E.g., file masquerading “malware.exe.txt” Is this something that belongs in CybOX? is_masqueraded = true Or should CybOX only support “the facts” that support the analytical observation, and leave the observations to be captured elsewhere? file_name = “malware.exe.txt” mime_type = “vnd.microsoft.portable-executable”

Device/Sys. Object Refactoring I Current State (CybOX 2.1) OS Property Device Property

Device/Sys. Object Refactoring II Proposed Refactoring (straw man)

Face to Face Agenda (draft) Patterning refactoring Object refactoring Focus on any open questions for each CybOX Core Pruning Making a more lightweight, focused CybOX Core CybOX 3.0 “end state” Overlapping STIX/CybOX issues Design philosophy First-class relationships Required IDs Etc.

OASIS Work Product Update CybOX specifications out of 94 reviewed and edited ETA: Late December

Next Meeting Thursday, January 28 10:00am ET