OASIS Cyber Threat Intelligence (CTI) TC

 View Only
  • 1.  Malware Proposal

    Posted 09-12-2018 15:25
      |   view attached
    All, I am submitted a new proposal (based on the previous great work by so many people) for malware to address all of the comments and concerns that have come up recently about embedded cyber observables, parent markers in cyber observables, and allowing third parties to add intelligence over time.  This new proposal has two new SDOs.  One for "malware" and one for "malware-analysis".  This proposal also used "observed_data" natively and allows relationships between "observed_data" objects.  I have attached a PDF copy of the proposal to this email and you can see the master copy in Google Docs here:  https://docs.google.com/document/d/1h7mRlHCCiS0JZ2w3VcZM6HwEVXx2pZRR7GNEXzM-CN4/edit# Thanks Bret Attachment: STIX 2.1 Malware Proposal.pdf Description: STIX 2.1 Malware Proposal.pdf

    Attachment(s)