CTI STIX SC Monthly Meeting www.oasis-open.org August 19, 2015.

Slides:

Advertisements

Similar presentations

FpML Versioning An AWG Discusion Document. Namespace URIs & Versions An XML parser locates the schema for a document based on its namespace URI To be.

Advertisements

ATC Conference Call January 10, 2008 Thank you for joining the call. We will start the call shortly. Please enter * 6 to mute your line and # 6 to unmute.

Jan 28, 2009CFS-GBL meeting 1 PM report Jan 28, 2009: Reviews –AAP –PAC (May 9 and 10, 2009) Meetings –TILC09 FALC –Madrid, Jan 19, 2009.

Sponsored by the Office of the Under Secretary of Defense for Personnel and Readiness (OUSD P&R) Experience API (xAPI) Update Andy Johnson Contractor with.

Feb. 2, 2004CS WPI1 CS 509 Design of Software Systems Lecture #3 Monday, Feb. 2, 2004.

1 SHAREPOINT FOR PROJECT MANAGEMENT COLLABORATION Gerry Brimacombe Sector Learning Solutions Inc.

OASIS document rules Nigel Shaw Eurostep Limited.

RDA Data Foundation and Terminology (DFT) IG: Introduction Prepared for RDA Plenary San Diego, March 9, 2015 Gary Berg-Cross, Raphael Ritz, Co-Chairs DFT.

How an idea becomes an IEC standard Gary Johnson Chairman IEC SC45A

Welcome We’re Mark and Bret; This is the TAXII SC.

Open-Source and Cyberculture | VID ViewSource: Reflective Open-Source Software Corinna Bath Jelena Karanovic Morgan Ames Stéphane Couture.

Proposed TC Issues Process Martin Chapman. Purpose An issues driven process helps to 1.Untangle un-conflate problems 2.Narrow focus to solving particular.

CTI STIX SC Kickoff Meeting July 16, 2015.

OData Technical Committee Kick-off July 26, 2012.

RDA Data Foundation and Terminology (DFT) IG: Introduction Prepared for RDA Plenary San Diego, March 9, 2015 Gary Berg-Cross, Raphael Ritz, Co-Chairs DFT.

ISO TC 184/SC4 1/12 Opening Plenary: QC Report Thomas L. Warren Technical Writing Program Ok.State U.

Differences and similarities with informal and formal reports

Copyright © 2004 by The Web Services Interoperability Organization (WS-I). All Rights Reserved 1 Interoperability: Ensuring the Success of Web Services.

U.S. Department of the Interior U.S. Geological Survey Richard Huffine September 15, 2009 Council for Data Integration Planning Team Summary.

Module 6: Preparing for RDA... LC RDA for Georgia Cataloging Summit Aug. 9-10, 2011.

INFO 424 Team Project Practicum Week 2 - Launch report, Project tracking, Review report Glenn Booker Notes largely from Prof. Hislop.

1 SPDX - Tools  Objectives:  Reduce the effort of creating, consuming and validating SPDX Documents  Provide a translation from the technical document.

Common Record Update Holly A. Hyland, FSA Kim Shiflette, NCHELP.

W3C Automotive and Web Platform Business Group May 29, 2013.

CMIS4DAM TC Inaugural Meeting 03 December /03/14OASIS Presentation to CMIS4DAM TC.

DRRP’s Updated MOU: Implementing the Transition Plan for Monitoring and Maintenance Daniel Oppenheimer Tamarisk Coalition.

EGEE-III INFSO-RI Enabling Grids for E-sciencE EGEE and gLite are registered trademarks Stephen Childs Trinity College Dublin &

Report to the UBL TC Naming and Design Rules Subcommittee Eve Maler NDR SC chair 22 January

SCA TCs Proposed Issues Process Martin Chapman, Assembly Co-chair Anish Karmarkar, BPEL Co-chair Ashok Malhotra, Policy Co-chair Mike Edwards, Assembly.

DDI Specifications Recent Developments Wendy Thomas Joachim Wackerow Technical Committee EDDI Copenhagen.

CTI STIX SC Monthly Meeting October 21, 2015.

CTI CybOX SC Meeting November 19, 2015.

CTI CybOX SC Meeting October 29, 2015.

CTI CybOX SC Meeting August 27, 2015.

CTI STIX SC Status Report October 22, 2015.

CTI STIX SC Monthly Meeting December 23, 2015.

Public Health Reporting Initiative July 25, 2012.

Note At the 2008/03/12 TC meeting the BPEL4People TC formally adopted the SCA TC issue process for issue resolution. The following slides document v3 of.

CTI STIX SC Status Report December 10, 2015.

Interop SC 02/03/2016. Agenda Jacques feedbacks Contribution process improvements proposal 2.

GOING DEEPER INTO STEP 1: UNWRAPPING STANDARDS Welcome!

28 May 2010 HMA-FO Task 2: Feasibility Analysis Service HMA Follow On Activities Task 2: Feasibility Analysis Service (Sensor Planning Service) Monthly.

Financial Industry Business Ontology (FIBO) Monthly Status/review call Wednesday November 2 nd 2011.

Contents Major issue states and transitions Tools.

Draft Data Foundation and Terminology (DFT) Vocabulary Development Process Prepared for WG-Core meeting 24/25.2 Munich/Garching Gary Berg-Cross Co-Chair.

OMG Architecture Ecosystem SIG Enterprise Data World 2011.

By: Jamie Morgan  A wiki is a web page or collection of web pages which you and your students can access to contribute or modify content without having.

1 Documentation Workflow Proposal By Michael Wheatland LibreOffice Documentation Team

OASIS Overview TC Process & Administration

TOP project – STATUS UPDATE & Workflow demo

Systems Engineering Concept Model (SECM) Update

Internal SC CTSI Survey Analysis Rethinking SC CTSI Communication

OASIS TC Process Overview

CTI STIX SC Monthly Meeting

STIX Interoperability

AIXM – Work in Progress AIXM CCB – Webex, 24 JAN 2014.

OASIS OPENC2 TECHNICAL COMMITTEE MEETING (Final Version)

OCPP TC Inaugural Meeting 07 September 2016

OASIS eTMF TC Inaugural Meeting 16 December 2013

OASIS Overview TC Process

DocTeam SC Report to TC 94th OGC Technical Committee Barcelona Spain

CSAF TC Inaugural Meeting 16 November 2016

Top Level Sighting Object

OASIS OSLC Core TC Inaugural Meeting 12 November 2013

OSLC Domains TC Inaugural Meeting 30 September 2016

SARIF Issue Tracking Process

CTI TC Inaugural Meeting 18 June 2015

CTI STIX SC Monthly Meeting

Systems Engineering Concept Model (SECM) Update

QoS Metadata Status 106th OGC Technical Committee Orléans, France

Presentation transcript:

CTI STIX SC Monthly Meeting August 19, 2015

Agenda n Work progress status l Update on STIX specs n Discuss ideas for HOW we do work n The need for use cases

STIX specification status n Worked with OASIS folks and now have OASIS document templates for all parts of STIX language specs n In process of migrating spec content from pre-OASIS form into the templates l Work being done by MITRE people who edited the original pre-OASIS documents l Drafts for Overview and Core documents are mostly done n Working through editing, formatting, policy details with OASIS l Estimate it will only take a few hours per document n Should have all existing documents migrated to OASIS drafts within weeks n STIX Version Part 1: Overview. [URI – added during publication] n STIX Version Part 2: Common. [URI] n STIX Version Part 3: Core. (this document) n STIX Version Part 4: Indicator. [URI] n STIX Version Part 5: TTP. [URI] n STIX Version Part 6: Incident. [URI] n STIX Version Part 7: Threat Actor. [URI] n STIX Version Part 8: Campaign. [URI] n STIX Version Part 9: Course of Action. [URI] n STIX Version Part 10: Exploit Target. [URI] n STIX Version Part 11: Report. [URI] n STIX Version Part 12: Extensions. [URI] n STIX Version Part 13: Data Marking. [URI] n STIX Version Part 14: Vocabularies. [URI] n STIX Version Part 15: UML Model. [URI] n XML schemas: (list file names or directory name) [URI]

STIX Tools Update n OpenIOC->STIX tool update was released to support STIX 1.2 n STIX2HTML is in process of update for STIX 1.2 n STIXviz is almost ready for its STIX 1.2 release

Ideas for HOW we do work Leveraging github n Issue trackers n Wikis n Will likely need to being thinking of the “specs” repository as primary area for STIX language l Should eventually move over appropriate tracker issues from “schemas” repository n Ideas for how else we could be leveraging github?

Ideas for HOW we do work Other ideas for technical enablers? n Does anyone have any other ideas for gaps/solutions of technical enablers for our work? l Discuss exploration into collaboration tools n SC co-chairs are discussing potential options n Interested in input/feedback on requirements and options l Options for managing meetings better?

Ideas for HOW we do work Official STIX SC Secretary? n What do people think of the idea of having an official STIX SC Secretary to organize and coordinate SC activities?

Ideas for HOW we do work Discussion of STIX SC work processes n Don’t want to rehash the from the co-chairs sent on 8/1 l Do need to emphasize that under formal governance our work will need to be open, deliberative, ordered and tracked. n Encourage ideas and discussion but caution that consensus and decisions will need to follow process. l Please keep talking. :-) n Encourage contributions beyond just thoughts l As work product efforts are stood up, editors will be needed l Contributions of use cases, conceptual models, schema structures, normative or informative language suggestions, test data, etc. will be invaluable to collaborative progression n MITRE folks will continue to be involved but we will need a broader base of active contributors going forward

The need for use cases n The need for Use Cases has been repeatedly raised l Use cases have always been driving STIX/TAXII/CybOX but they have not been explicitly codified n Under formal governance we need to do this l This topic is being discussed across the SCs at the TC level not just for STIX l We need to capture comprehensive set of use cases for STIX n Suggestion: Initial capture and evolution in a github wiki n Suggestion: Identifying a volunteer to help coordinate this activity