Presentation is loading. Please wait.

Presentation is loading. Please wait.

Top Level Sighting Object

Published byJuniper Bradley Modified over 6 years ago

Similar presentations

Presentation on theme: "Top Level Sighting Object"— Presentation transcript:

1 Top Level Sighting Object
Why? No independent way to say ‘I saw this’ Sightings currently buried under Indicator Adding a Sighting means sending updated Indicator If you have 1000 new sightings that’s a lot of Indicators to reissue A top-level Sighting Object allows Sightings to be sent independently

2 Sighting Object discussion
Should a Sighting Object only reference ‘detected’ information (e.g. Observable Instances only) OR Should a Sighting Object reference any other top-level Object (e.g. Threat Actor’s, TTPs, etc) Should a Sighting Object reference some top-level Objects based on STIX model (e.g. Threat Actor’s, TTPs, Indicators, Incident, Report)

3 Sighting Object possible fields
One or more referenced objects (i.e. idref) Sighting Count Timestamp / Time Period Victim Organization information Producer Organization information Sighting Confidence TLP / Data Markings Alternative Sighting ID Sighting Type Title Description Short Description Version

4 Sighting Object UML Strawman

Download ppt "Top Level Sighting Object"

Similar presentations

How to Create a Local Collection

How to Create a Local Collection
WELCOME TO AD POST JOBS. INSTRUCTIONS HOW TO POST FREE ADS ON INTERNET.

WELCOME TO AD POST JOBS. INSTRUCTIONS HOW TO POST FREE ADS ON INTERNET.
Database Programming in Java Corresponds with Chapter 32, 33.

Database Programming in Java Corresponds with Chapter 32, 33.
Interaction diagrams Sequence and collaboration diagrams.

Interaction diagrams Sequence and collaboration diagrams.
Detailed design – class design Domain Modeling SE-2030 Dr. Rob Hasker 1 Based on slides written by Dr. Mark L. Hornick Used with permission.

Detailed design – class design Domain Modeling SE-2030 Dr. Rob Hasker 1 Based on slides written by Dr. Mark L. Hornick Used with permission.
CTI STIX SC Monthly Meeting www.oasis-open.org August 19, 2015.

CTI STIX SC Monthly Meeting August 19, 2015.
Functional Question Foundation (Algebra 9) For the week beginning ….

Functional Question Foundation (Algebra 9) For the week beginning ….
West Virginia University Slide 1 Copyright © K.Goseva 2010 CS 736 Software Performance Engineering Comments on Homework #1  Please revise the solution.

West Virginia University Slide 1 Copyright © K.Goseva 2010 CS 736 Software Performance Engineering Comments on Homework #1  Please revise the solution.
200 300 400 500 100 200 300 400 500 100 200 300 400 500 100 200 300 400 500 100 200 300 400 500 100 Adding SubtractingMultiplyingDividingMiscellaneous.

Adding SubtractingMultiplyingDividingMiscellaneous.
CTI STIX SC Monthly Meeting www.oasis-open.org October 21, 2015.

CTI STIX SC Monthly Meeting October 21, 2015.
CTI CybOX SC Meeting www.oasis-open.org November 19, 2015.

CTI CybOX SC Meeting November 19, 2015.
CTI STIX SC Status Report www.oasis-open.org October 22, 2015.

CTI STIX SC Status Report October 22, 2015.
CTI STIX SC Monthly Meeting www.oasis-open.org December 23, 2015.

CTI STIX SC Monthly Meeting December 23, 2015.
网上报账系统包括以下业务: 日常报销 差旅费报销 借款业务 1. 填写报销内容 2. 选择支付方式 (或冲销借款) 3. 提交预约单 4. 打印预约单并同分类粘 贴好的发票一起送至财务 处 预约报销步骤: 网上报账系统 薪酬发放管理系统 财务查询系统 1.

网上报账系统包括以下业务: 日常报销 差旅费报销 借款业务 1. 填写报销内容 2. 选择支付方式 (或冲销借款) 3. 提交预约单 4. 打印预约单并同分类粘 贴好的发票一起送至财务 处 预约报销步骤: 网上报账系统 薪酬发放管理系统 财务查询系统 1.
Virtual Local Area Networks In Security By Mark Reed.

Virtual Local Area Networks In Security By Mark Reed.
CSE 373, Copyright S. Tanimoto, 2002 Abstract Data Types - 1 Abstract Data Types Motivation Abstract Data Types Example Using math. functions to describe.

CSE 373, Copyright S. Tanimoto, 2002 Abstract Data Types - 1 Abstract Data Types Motivation Abstract Data Types Example Using math. functions to describe.
Presentation Title.

Presentation Title.
Presentation Title.

Presentation Title.
Chapter 2 (Part 2) Populations.

Chapter 2 (Part 2) Populations.
District and Club database

District and Club database

Similar presentations

Ads by Google