OASIS Cyber Threat Intelligence (CTI) TC

All – I have posted 2 documents that have been drafted by OASIS legal team for

 

Instructions on STIX Preferred program Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft





Description
STIX Preferred Instructions Draft 
Download Latest Revision
Public Download Link
 




Document Name :
STIX Preferred Terms of Use
Draft



Description
STIX Preferred Terms of Use Draft
Download
Latest Revision
Public Download Link








 

Isn't the personas being tested missing? Sent from IBM Verse Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments --- From: "Allan Thomson" <athomson@lookingglasscyber.com> To: cti-stix@lists.oasis-open.org, cti@lists.oasis-open.org Cc: "Interoperability Subcommittee" <cti-interoperability@lists.oasis-open.org> Date: Mon, Mar 12, 2018 8:16 PM Subject: [cti-stix] STIX Preferred Documents For Review/Comments All – I have posted 2 documents that have been drafted by OASIS legal team for   Instructions on STIX Preferred program Terms of use on STIX Preferred program   Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).   SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.   If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.   We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.   We expect the ballot to start sometime after 19 th March.   Allan   Document Name :  STIX Preferred Instructions Draft Description STIX Preferred Instructions Draft  Download Latest Revision Public Download Link   Document Name : STIX Preferred Terms of Use Draft Description STIX Preferred Terms of Use Draft Download Latest Revision Public Download Link  

Isn't the personas being tested missing? Sent from IBM Verse Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments --- From: "Allan Thomson" <athomson@lookingglasscyber.com> To: cti-stix@lists.oasis-open.org, cti@lists.oasis-open.org Cc: "Interoperability Subcommittee" <cti-interoperability@lists.oasis-open.org> Date: Mon, Mar 12, 2018 8:16 PM Subject: [cti-stix] STIX Preferred Documents For Review/Comments All – I have posted 2 documents that have been drafted by OASIS legal team for   Instructions on STIX Preferred program Terms of use on STIX Preferred program   Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).   SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.   If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.   We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.   We expect the ballot to start sometime after 19 th March.   Allan   Document Name :  STIX Preferred Instructions Draft Description STIX Preferred Instructions Draft  Download Latest Revision Public Download Link   Document Name : STIX Preferred Terms of Use Draft Description STIX Preferred Terms of Use Draft Download Latest Revision Public Download Link  

Isn't the personas being tested missing? Sent from IBM Verse Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments --- From: "Allan Thomson" <athomson@lookingglasscyber.com> To: cti-stix@lists.oasis-open.org, cti@lists.oasis-open.org Cc: "Interoperability Subcommittee" <cti-interoperability@lists.oasis-open.org> Date: Mon, Mar 12, 2018 8:16 PM Subject: [cti-stix] STIX Preferred Documents For Review/Comments All – I have posted 2 documents that have been drafted by OASIS legal team for   Instructions on STIX Preferred program Terms of use on STIX Preferred program   Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).   SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.   If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.   We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.   We expect the ballot to start sometime after 19 th March.   Allan   Document Name :  STIX Preferred Instructions Draft Description STIX Preferred Instructions Draft  Download Latest Revision Public Download Link   Document Name : STIX Preferred Terms of Use Draft Description STIX Preferred Terms of Use Draft Download Latest Revision Public Download Link  

The instructions/terms of use documents refer to the test plan documents.

 
However, the intention is that these documents do not have to be revised for every change to the test documents and act more as a general framework for the overall program going forward.
 
Please consider that these are not replacements for our test documents but rather a framework around them.
 
Allan
 

From: Jason Keirstead <Jason.Keirstead@ca.ibm.com>
Date: Monday, March 12, 2018 at 8:16 PM
To: Allan Thomson <athomson@lookingglasscyber.com>
Cc: "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>, Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org>
Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments


 

Isn't the personas being tested missing?

Sent from IBM Verse


Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments ---



 




From:


"Allan Thomson" <athomson@lookingglasscyber.com>




To:


cti-stix@lists.oasis-open.org, cti@lists.oasis-open.org




Cc:


"Interoperability Subcommittee" <cti-interoperability@lists.oasis-open.org>




Date:


Mon, Mar 12, 2018 8:16 PM




Subject:


[cti-stix] STIX Preferred Documents For Review/Comments





 

All – I have posted 2 documents that have been drafted by OASIS legal team for

 

Instructions on STIX Preferred program Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft





Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft



Description
STIX Preferred Terms of Use Draft
Download
Latest Revision
Public
Download Link







 

 

The instructions/terms of use documents refer to the test plan documents.

 
However, the intention is that these documents do not have to be revised for every change to the test documents and act more as a general framework for the overall program going forward.
 
Please consider that these are not replacements for our test documents but rather a framework around them.
 
Allan
 

From: Jason Keirstead <Jason.Keirstead@ca.ibm.com>
Date: Monday, March 12, 2018 at 8:16 PM
To: Allan Thomson <athomson@lookingglasscyber.com>
Cc: "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>, Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org>
Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments


 

Isn't the personas being tested missing?

Sent from IBM Verse


Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments ---



 




From:


"Allan Thomson" <athomson@lookingglasscyber.com>




To:


cti-stix@lists.oasis-open.org, cti@lists.oasis-open.org




Cc:


"Interoperability Subcommittee" <cti-interoperability@lists.oasis-open.org>




Date:


Mon, Mar 12, 2018 8:16 PM




Subject:


[cti-stix] STIX Preferred Documents For Review/Comments





 

All – I have posted 2 documents that have been drafted by OASIS legal team for

 

Instructions on STIX Preferred program Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft





Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft



Description
STIX Preferred Terms of Use Draft
Download
Latest Revision
Public
Download Link







 

 

I am trying to align this document with
what is going to be listed on the OASIS website. I presumed that what is going to be
listed on the OASIS website would outline the personas tested against.
It seems strange to allow an Attestation
so vague that it doesn't outline the personas you're attesting to... Below is the only thing you actually
say in the attestation.. -- Which of the CTI Interop Tests was
applied to the product or service listed in this Attestation? ______ STIX/TAXIITM 2.0 Interoperability
Test Document - Part 1 ______ STIX/TAXIITM 2.0 Interoperability
Test Document - Part 2 - Jason Keirstead STSM, Product Architect, Security Intelligence, IBM Security Systems www.ibm.com/security "Things may come to those who wait, but only the things left by those
who hustle." - Unknown From:      
  Allan Thomson <athomson@lookingglasscyber.com> To:      
  Jason Keirstead <Jason.Keirstead@ca.ibm.com> Cc:      
  "cti-stix@lists.oasis-open.org"
<cti-stix@lists.oasis-open.org>, "cti@lists.oasis-open.org"
<cti@lists.oasis-open.org>, "Interoperability Subcommittee"
<cti-interoperability@lists.oasis-open.org> Date:      
  03/13/2018 09:58 AM Subject:    
    [cti-interoperability]
Re: [cti-stix] STIX Preferred Documents For Review/Comments Sent by:    
    <cti-interoperability@lists.oasis-open.org> The instructions/terms of use documents
refer to the test plan documents.   However, the intention is that these documents
do not have to be revised for every change to the test documents and act
more as a general framework for the overall program going forward.   Please consider that these are not replacements
for our test documents but rather a framework around them.   Allan   From: Jason Keirstead <Jason.Keirstead@ca.ibm.com> Date: Monday, March 12, 2018 at 8:16 PM To: Allan Thomson <athomson@lookingglasscyber.com> Cc: "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>,
"cti@lists.oasis-open.org" <cti@lists.oasis-open.org>,
Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org> Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments   Isn't the personas being tested
missing? Sent from IBM Verse Allan Thomson --- [cti-stix]
STIX Preferred Documents For Review/Comments ---   From: "Allan
Thomson" <athomson@lookingglasscyber.com> To: cti-stix@lists.oasis-open.org,
cti@lists.oasis-open.org Cc: "Interoperability
Subcommittee" <cti-interoperability@lists.oasis-open.org> Date: Mon,
Mar 12, 2018 8:16 PM Subject: [cti-stix]
STIX Preferred Documents For Review/Comments   All – I have posted 2 documents that have
been drafted by OASIS legal team for   Instructions on STIX Preferred
program Terms of use on STIX Preferred
program   Please review these documents and if you
have any comments or concerns please submit them to the Interop sub-committee
by 19 th March (1 week from today).   SUGGESTION: Have your legal or GC teams
also review these documents if you plan to have your organization participate
in STIX Preferred.   If you would prefer to raise your concerns
in person please plan to attend the Interop sub-committee meetings on Weds
9am PST. Details are on Kavi.   We plan to do a ballot on formal TC approval
of these documents but we wanted to solicit feedback/comments before we
do that.   We expect the ballot to start sometime
after 19 th March.   Allan   Document Name : STIX
Preferred Instructions Draft Description STIX Preferred Instructions Draft Download
Latest Revision Public
Download Link   Document
Name : STIX
Preferred Terms of Use Draft Description STIX Preferred Terms of Use Draft Download
Latest Revision Public
Download Link    

I am trying to align this document with
what is going to be listed on the OASIS website. I presumed that what is going to be
listed on the OASIS website would outline the personas tested against.
It seems strange to allow an Attestation
so vague that it doesn't outline the personas you're attesting to... Below is the only thing you actually
say in the attestation.. -- Which of the CTI Interop Tests was
applied to the product or service listed in this Attestation? ______ STIX/TAXIITM 2.0 Interoperability
Test Document - Part 1 ______ STIX/TAXIITM 2.0 Interoperability
Test Document - Part 2 - Jason Keirstead STSM, Product Architect, Security Intelligence, IBM Security Systems www.ibm.com/security "Things may come to those who wait, but only the things left by those
who hustle." - Unknown From:      
  Allan Thomson <athomson@lookingglasscyber.com> To:      
  Jason Keirstead <Jason.Keirstead@ca.ibm.com> Cc:      
  "cti-stix@lists.oasis-open.org"
<cti-stix@lists.oasis-open.org>, "cti@lists.oasis-open.org"
<cti@lists.oasis-open.org>, "Interoperability Subcommittee"
<cti-interoperability@lists.oasis-open.org> Date:      
  03/13/2018 09:58 AM Subject:    
    [cti-interoperability]
Re: [cti-stix] STIX Preferred Documents For Review/Comments Sent by:    
    <cti-interoperability@lists.oasis-open.org> The instructions/terms of use documents
refer to the test plan documents.   However, the intention is that these documents
do not have to be revised for every change to the test documents and act
more as a general framework for the overall program going forward.   Please consider that these are not replacements
for our test documents but rather a framework around them.   Allan   From: Jason Keirstead <Jason.Keirstead@ca.ibm.com> Date: Monday, March 12, 2018 at 8:16 PM To: Allan Thomson <athomson@lookingglasscyber.com> Cc: "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>,
"cti@lists.oasis-open.org" <cti@lists.oasis-open.org>,
Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org> Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments   Isn't the personas being tested
missing? Sent from IBM Verse Allan Thomson --- [cti-stix]
STIX Preferred Documents For Review/Comments ---   From: "Allan
Thomson" <athomson@lookingglasscyber.com> To: cti-stix@lists.oasis-open.org,
cti@lists.oasis-open.org Cc: "Interoperability
Subcommittee" <cti-interoperability@lists.oasis-open.org> Date: Mon,
Mar 12, 2018 8:16 PM Subject: [cti-stix]
STIX Preferred Documents For Review/Comments   All – I have posted 2 documents that have
been drafted by OASIS legal team for   Instructions on STIX Preferred
program Terms of use on STIX Preferred
program   Please review these documents and if you
have any comments or concerns please submit them to the Interop sub-committee
by 19 th March (1 week from today).   SUGGESTION: Have your legal or GC teams
also review these documents if you plan to have your organization participate
in STIX Preferred.   If you would prefer to raise your concerns
in person please plan to attend the Interop sub-committee meetings on Weds
9am PST. Details are on Kavi.   We plan to do a ballot on formal TC approval
of these documents but we wanted to solicit feedback/comments before we
do that.   We expect the ballot to start sometime
after 19 th March.   Allan   Document Name : STIX
Preferred Instructions Draft Description STIX Preferred Instructions Draft Download
Latest Revision Public
Download Link   Document
Name : STIX
Preferred Terms of Use Draft Description STIX Preferred Terms of Use Draft Download
Latest Revision Public
Download Link    

I am trying to align this document with
what is going to be listed on the OASIS website. I presumed that what is going to be
listed on the OASIS website would outline the personas tested against.
It seems strange to allow an Attestation
so vague that it doesn't outline the personas you're attesting to... Below is the only thing you actually
say in the attestation.. -- Which of the CTI Interop Tests was
applied to the product or service listed in this Attestation? ______ STIX/TAXIITM 2.0 Interoperability
Test Document - Part 1 ______ STIX/TAXIITM 2.0 Interoperability
Test Document - Part 2 - Jason Keirstead STSM, Product Architect, Security Intelligence, IBM Security Systems www.ibm.com/security "Things may come to those who wait, but only the things left by those
who hustle." - Unknown From:      
  Allan Thomson <athomson@lookingglasscyber.com> To:      
  Jason Keirstead <Jason.Keirstead@ca.ibm.com> Cc:      
  "cti-stix@lists.oasis-open.org"
<cti-stix@lists.oasis-open.org>, "cti@lists.oasis-open.org"
<cti@lists.oasis-open.org>, "Interoperability Subcommittee"
<cti-interoperability@lists.oasis-open.org> Date:      
  03/13/2018 09:58 AM Subject:    
    [cti-interoperability]
Re: [cti-stix] STIX Preferred Documents For Review/Comments Sent by:    
    <cti-interoperability@lists.oasis-open.org> The instructions/terms of use documents
refer to the test plan documents.   However, the intention is that these documents
do not have to be revised for every change to the test documents and act
more as a general framework for the overall program going forward.   Please consider that these are not replacements
for our test documents but rather a framework around them.   Allan   From: Jason Keirstead <Jason.Keirstead@ca.ibm.com> Date: Monday, March 12, 2018 at 8:16 PM To: Allan Thomson <athomson@lookingglasscyber.com> Cc: "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>,
"cti@lists.oasis-open.org" <cti@lists.oasis-open.org>,
Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org> Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments   Isn't the personas being tested
missing? Sent from IBM Verse Allan Thomson --- [cti-stix]
STIX Preferred Documents For Review/Comments ---   From: "Allan
Thomson" <athomson@lookingglasscyber.com> To: cti-stix@lists.oasis-open.org,
cti@lists.oasis-open.org Cc: "Interoperability
Subcommittee" <cti-interoperability@lists.oasis-open.org> Date: Mon,
Mar 12, 2018 8:16 PM Subject: [cti-stix]
STIX Preferred Documents For Review/Comments   All – I have posted 2 documents that have
been drafted by OASIS legal team for   Instructions on STIX Preferred
program Terms of use on STIX Preferred
program   Please review these documents and if you
have any comments or concerns please submit them to the Interop sub-committee
by 19 th March (1 week from today).   SUGGESTION: Have your legal or GC teams
also review these documents if you plan to have your organization participate
in STIX Preferred.   If you would prefer to raise your concerns
in person please plan to attend the Interop sub-committee meetings on Weds
9am PST. Details are on Kavi.   We plan to do a ballot on formal TC approval
of these documents but we wanted to solicit feedback/comments before we
do that.   We expect the ballot to start sometime
after 19 th March.   Allan   Document Name : STIX
Preferred Instructions Draft Description STIX Preferred Instructions Draft Download
Latest Revision Public
Download Link   Document
Name : STIX
Preferred Terms of Use Draft Description STIX Preferred Terms of Use Draft Download
Latest Revision Public
Download Link    

I could not find text that talks about which versions of the specification you are claiming conformance to and which product version that maps to.  So if a product does this for STIX 2.0 does that mean they get to keep using this mark even with 2.5 is out?


Bret 

Sent from my Commodore 64 


PGP
Fingerprint:  63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 0050


On Mar 13, 2018, at 8:19 AM, Jason Keirstead < Jason.Keirstead@ca.ibm.com > wrote:



I am trying to align this document with what is going to be listed on the OASIS website.

I presumed that what is going to be listed on the OASIS website would outline the personas tested against.


It seems strange to allow an Attestation so vague that it doesn't outline the personas you're attesting to...

Below is the only thing you actually say in the attestation..
--

Which of the CTI Interop Tests was applied to the product or service listed in this Attestation?

______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 1
______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 2


-
Jason Keirstead
STSM, Product Architect, Security Intelligence, IBM Security Systems
www.ibm.com/security

"Things may come to those who wait, but only the things left by those who hustle." - Unknown





From:         Allan Thomson < athomson@lookingglasscyber.com >
To:         Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Cc:         " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >, "Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >
Date:         03/13/2018 09:58 AM
Subject:         [cti-interoperability] Re: [cti-stix] STIX Preferred Documents For Review/Comments
Sent by:         < cti-interoperability@lists.oasis-open.org >




The instructions/terms of use documents refer to the test plan documents.

 
However, the intention is that these documents do not have to be revised for every change to the test documents and act more as a general framework for the overall program going forward.
 
Please consider that these are not replacements for our test documents but rather a framework around them.
 
Allan
 
From: Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Date: Monday, March 12, 2018 at 8:16 PM
To: Allan Thomson < athomson@lookingglasscyber.com >
Cc: " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >,
Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments
 
Isn't the personas being tested missing?

Sent from IBM Verse
Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments ---

 





From:

"Allan Thomson" < athomson@lookingglasscyber.com >



To:

cti-stix@lists.oasis-open.org ,
cti@lists.oasis-open.org



Cc:

"Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >



Date:

Mon, Mar 12, 2018 8:16 PM



Subject:

[cti-stix] STIX Preferred Documents For Review/Comments




<mime-attachment.png>
 
All – I have posted 2 documents that have been drafted by OASIS legal team for

 

Instructions on STIX Preferred program Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name : STIX
Preferred Instructions Draft
<mime-attachment.png>

Description
STIX Preferred Instructions Draft
Download
Latest Revision
Public
Download Link
 





Document Name : STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft
Download
Latest Revision
Public
Download Link







 
 

I could not find text that talks about which versions of the specification you are claiming conformance to and which product version that maps to.  So if a product does this for STIX 2.0 does that mean they get to keep using this mark even with 2.5 is out?


Bret 

Sent from my Commodore 64 


PGP
Fingerprint:  63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 0050


On Mar 13, 2018, at 8:19 AM, Jason Keirstead < Jason.Keirstead@ca.ibm.com > wrote:



I am trying to align this document with what is going to be listed on the OASIS website.

I presumed that what is going to be listed on the OASIS website would outline the personas tested against.


It seems strange to allow an Attestation so vague that it doesn't outline the personas you're attesting to...

Below is the only thing you actually say in the attestation..
--

Which of the CTI Interop Tests was applied to the product or service listed in this Attestation?

______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 1
______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 2


-
Jason Keirstead
STSM, Product Architect, Security Intelligence, IBM Security Systems
www.ibm.com/security

"Things may come to those who wait, but only the things left by those who hustle." - Unknown





From:         Allan Thomson < athomson@lookingglasscyber.com >
To:         Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Cc:         " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >, "Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >
Date:         03/13/2018 09:58 AM
Subject:         [cti-interoperability] Re: [cti-stix] STIX Preferred Documents For Review/Comments
Sent by:         < cti-interoperability@lists.oasis-open.org >




The instructions/terms of use documents refer to the test plan documents.

 
However, the intention is that these documents do not have to be revised for every change to the test documents and act more as a general framework for the overall program going forward.
 
Please consider that these are not replacements for our test documents but rather a framework around them.
 
Allan
 
From: Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Date: Monday, March 12, 2018 at 8:16 PM
To: Allan Thomson < athomson@lookingglasscyber.com >
Cc: " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >,
Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments
 
Isn't the personas being tested missing?

Sent from IBM Verse
Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments ---

 





From:

"Allan Thomson" < athomson@lookingglasscyber.com >



To:

cti-stix@lists.oasis-open.org ,
cti@lists.oasis-open.org



Cc:

"Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >



Date:

Mon, Mar 12, 2018 8:16 PM



Subject:

[cti-stix] STIX Preferred Documents For Review/Comments




<mime-attachment.png>
 
All – I have posted 2 documents that have been drafted by OASIS legal team for

 

Instructions on STIX Preferred program Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name : STIX
Preferred Instructions Draft
<mime-attachment.png>

Description
STIX Preferred Instructions Draft
Download
Latest Revision
Public
Download Link
 





Document Name : STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft
Download
Latest Revision
Public
Download Link







 
 

I could not find text that talks about which versions of the specification you are claiming conformance to and which product version that maps to.  So if a product does this for STIX 2.0 does that mean they get to keep using this mark even with 2.5 is out?


Bret 

Sent from my Commodore 64 


PGP
Fingerprint:  63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 0050


On Mar 13, 2018, at 8:19 AM, Jason Keirstead < Jason.Keirstead@ca.ibm.com > wrote:



I am trying to align this document with what is going to be listed on the OASIS website.

I presumed that what is going to be listed on the OASIS website would outline the personas tested against.


It seems strange to allow an Attestation so vague that it doesn't outline the personas you're attesting to...

Below is the only thing you actually say in the attestation..
--

Which of the CTI Interop Tests was applied to the product or service listed in this Attestation?

______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 1
______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 2


-
Jason Keirstead
STSM, Product Architect, Security Intelligence, IBM Security Systems
www.ibm.com/security

"Things may come to those who wait, but only the things left by those who hustle." - Unknown





From:         Allan Thomson < athomson@lookingglasscyber.com >
To:         Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Cc:         " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >, "Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >
Date:         03/13/2018 09:58 AM
Subject:         [cti-interoperability] Re: [cti-stix] STIX Preferred Documents For Review/Comments
Sent by:         < cti-interoperability@lists.oasis-open.org >




The instructions/terms of use documents refer to the test plan documents.

 
However, the intention is that these documents do not have to be revised for every change to the test documents and act more as a general framework for the overall program going forward.
 
Please consider that these are not replacements for our test documents but rather a framework around them.
 
Allan
 
From: Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Date: Monday, March 12, 2018 at 8:16 PM
To: Allan Thomson < athomson@lookingglasscyber.com >
Cc: " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >,
Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments
 
Isn't the personas being tested missing?

Sent from IBM Verse
Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments ---

 





From:

"Allan Thomson" < athomson@lookingglasscyber.com >



To:

cti-stix@lists.oasis-open.org ,
cti@lists.oasis-open.org



Cc:

"Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >



Date:

Mon, Mar 12, 2018 8:16 PM



Subject:

[cti-stix] STIX Preferred Documents For Review/Comments




<mime-attachment.png>
 
All – I have posted 2 documents that have been drafted by OASIS legal team for

 

Instructions on STIX Preferred program Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name : STIX
Preferred Instructions Draft
<mime-attachment.png>

Description
STIX Preferred Instructions Draft
Download
Latest Revision
Public
Download Link
 





Document Name : STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft
Download
Latest Revision
Public
Download Link







 
 

Bret – the intention is ‘no’. Certification only applies to specific persona/version and therefore if you certify 2.0 based product then it does not then include all future versions of your product.
 
If we need to clarify that in the text then please suggest changes. I did review this text with respect to this and we can pick up more in the Interop calls.
 
regards
 
Allan
 

From: Bret Jordan <Bret_Jordan@symantec.com>
Date: Tuesday, March 13, 2018 at 8:34 AM
To: Jason Keirstead <Jason.Keirstead@ca.ibm.com>
Cc: Allan Thomson <athomson@lookingglasscyber.com>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>, Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org>, "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>
Subject: Re: [EXT] [cti-stix] Re: [cti-interoperability] Re: [cti-stix] STIX Preferred Documents For Review/Comments


 

I could not find text that talks about which versions of the specification you are claiming conformance to and which product version that maps to.  So if a product does this for STIX 2.0 does that mean they get to keep using this mark even
with 2.5 is out?

 


Bret 

Sent from my Commodore 64 

 


PGP Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 0050




On Mar 13, 2018, at 8:19 AM, Jason Keirstead < Jason.Keirstead@ca.ibm.com > wrote:



I am trying to align this document with what is going to be listed on the OASIS website.

I presumed that what is going to be listed on the OASIS website would outline the personas tested against.


It seems strange to allow an Attestation so vague that it doesn't outline the personas you're attesting to...

Below is the only thing you actually say in the attestation..
--

Which of the CTI Interop Tests was applied to the product or service listed in this Attestation?

______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 1
______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 2


-
Jason Keirstead
STSM, Product Architect, Security Intelligence, IBM Security Systems
www.ibm.com/security

"Things may come to those who wait, but only the things left by those who hustle." - Unknown





From:         Allan Thomson < athomson@lookingglasscyber.com >
To:         Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Cc:         " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >, "Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >
Date:         03/13/2018 09:58 AM
Subject:         [cti-interoperability] Re: [cti-stix] STIX Preferred Documents For Review/Comments
Sent by:         < cti-interoperability@lists.oasis-open.org >




The instructions/terms of use documents refer to the test plan documents.

 
However, the intention is that these documents do not have to be revised for every change to the test documents and act more as a general framework for the overall program going forward.
 
Please consider that these are not replacements for our test documents but rather a framework around them.
 
Allan
 
From: Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Date: Monday, March 12, 2018 at 8:16 PM
To: Allan Thomson < athomson@lookingglasscyber.com >
Cc: " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >,
Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments
 
Isn't the personas being tested missing?

Sent from IBM Verse
Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments ---

 




From:


"Allan Thomson" < athomson@lookingglasscyber.com >




To:


cti-stix@lists.oasis-open.org ,
cti@lists.oasis-open.org




Cc:


"Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >




Date:


Mon, Mar 12, 2018 8:16 PM




Subject:


[cti-stix] STIX Preferred Documents For Review/Comments





<mime-attachment.png>
 
All – I have posted 2 documents that have been drafted by OASIS legal team for

 


Instructions on STIX Preferred program


Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :
STIX
Preferred Instructions Draft
<mime-attachment.png>

Description
STIX Preferred Instructions Draft
Download
Latest Revision
Public
Download Link
 





Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft
Download
Latest Revision
Public
Download Link









 
 

Bret – the intention is ‘no’. Certification only applies to specific persona/version and therefore if you certify 2.0 based product then it does not then include all future versions of your product.
 
If we need to clarify that in the text then please suggest changes. I did review this text with respect to this and we can pick up more in the Interop calls.
 
regards
 
Allan
 

From: Bret Jordan <Bret_Jordan@symantec.com>
Date: Tuesday, March 13, 2018 at 8:34 AM
To: Jason Keirstead <Jason.Keirstead@ca.ibm.com>
Cc: Allan Thomson <athomson@lookingglasscyber.com>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>, Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org>, "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>
Subject: Re: [EXT] [cti-stix] Re: [cti-interoperability] Re: [cti-stix] STIX Preferred Documents For Review/Comments


 

I could not find text that talks about which versions of the specification you are claiming conformance to and which product version that maps to.  So if a product does this for STIX 2.0 does that mean they get to keep using this mark even
with 2.5 is out?

 


Bret 

Sent from my Commodore 64 

 


PGP Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 0050




On Mar 13, 2018, at 8:19 AM, Jason Keirstead < Jason.Keirstead@ca.ibm.com > wrote:



I am trying to align this document with what is going to be listed on the OASIS website.

I presumed that what is going to be listed on the OASIS website would outline the personas tested against.


It seems strange to allow an Attestation so vague that it doesn't outline the personas you're attesting to...

Below is the only thing you actually say in the attestation..
--

Which of the CTI Interop Tests was applied to the product or service listed in this Attestation?

______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 1
______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 2


-
Jason Keirstead
STSM, Product Architect, Security Intelligence, IBM Security Systems
www.ibm.com/security

"Things may come to those who wait, but only the things left by those who hustle." - Unknown





From:         Allan Thomson < athomson@lookingglasscyber.com >
To:         Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Cc:         " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >, "Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >
Date:         03/13/2018 09:58 AM
Subject:         [cti-interoperability] Re: [cti-stix] STIX Preferred Documents For Review/Comments
Sent by:         < cti-interoperability@lists.oasis-open.org >




The instructions/terms of use documents refer to the test plan documents.

 
However, the intention is that these documents do not have to be revised for every change to the test documents and act more as a general framework for the overall program going forward.
 
Please consider that these are not replacements for our test documents but rather a framework around them.
 
Allan
 
From: Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Date: Monday, March 12, 2018 at 8:16 PM
To: Allan Thomson < athomson@lookingglasscyber.com >
Cc: " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >,
Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments
 
Isn't the personas being tested missing?

Sent from IBM Verse
Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments ---

 




From:


"Allan Thomson" < athomson@lookingglasscyber.com >




To:


cti-stix@lists.oasis-open.org ,
cti@lists.oasis-open.org




Cc:


"Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >




Date:


Mon, Mar 12, 2018 8:16 PM




Subject:


[cti-stix] STIX Preferred Documents For Review/Comments





<mime-attachment.png>
 
All – I have posted 2 documents that have been drafted by OASIS legal team for

 


Instructions on STIX Preferred program


Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :
STIX
Preferred Instructions Draft
<mime-attachment.png>

Description
STIX Preferred Instructions Draft
Download
Latest Revision
Public
Download Link
 





Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft
Download
Latest Revision
Public
Download Link









 
 

Bret – the intention is ‘no’. Certification only applies to specific persona/version and therefore if you certify 2.0 based product then it does not then include all future versions of your product.
 
If we need to clarify that in the text then please suggest changes. I did review this text with respect to this and we can pick up more in the Interop calls.
 
regards
 
Allan
 

From: Bret Jordan <Bret_Jordan@symantec.com>
Date: Tuesday, March 13, 2018 at 8:34 AM
To: Jason Keirstead <Jason.Keirstead@ca.ibm.com>
Cc: Allan Thomson <athomson@lookingglasscyber.com>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>, Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org>, "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>
Subject: Re: [EXT] [cti-stix] Re: [cti-interoperability] Re: [cti-stix] STIX Preferred Documents For Review/Comments


 

I could not find text that talks about which versions of the specification you are claiming conformance to and which product version that maps to.  So if a product does this for STIX 2.0 does that mean they get to keep using this mark even
with 2.5 is out?

 


Bret 

Sent from my Commodore 64 

 


PGP Fingerprint: 63B4 FC53 680A 6B7D 1447  F2C0 74F8 ACAE 7415 0050




On Mar 13, 2018, at 8:19 AM, Jason Keirstead < Jason.Keirstead@ca.ibm.com > wrote:



I am trying to align this document with what is going to be listed on the OASIS website.

I presumed that what is going to be listed on the OASIS website would outline the personas tested against.


It seems strange to allow an Attestation so vague that it doesn't outline the personas you're attesting to...

Below is the only thing you actually say in the attestation..
--

Which of the CTI Interop Tests was applied to the product or service listed in this Attestation?

______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 1
______ STIX/TAXIITM 2.0 Interoperability Test Document - Part 2


-
Jason Keirstead
STSM, Product Architect, Security Intelligence, IBM Security Systems
www.ibm.com/security

"Things may come to those who wait, but only the things left by those who hustle." - Unknown





From:         Allan Thomson < athomson@lookingglasscyber.com >
To:         Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Cc:         " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >, "Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >
Date:         03/13/2018 09:58 AM
Subject:         [cti-interoperability] Re: [cti-stix] STIX Preferred Documents For Review/Comments
Sent by:         < cti-interoperability@lists.oasis-open.org >




The instructions/terms of use documents refer to the test plan documents.

 
However, the intention is that these documents do not have to be revised for every change to the test documents and act more as a general framework for the overall program going forward.
 
Please consider that these are not replacements for our test documents but rather a framework around them.
 
Allan
 
From: Jason Keirstead < Jason.Keirstead@ca.ibm.com >
Date: Monday, March 12, 2018 at 8:16 PM
To: Allan Thomson < athomson@lookingglasscyber.com >
Cc: " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >,
Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments
 
Isn't the personas being tested missing?

Sent from IBM Verse
Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments ---

 




From:


"Allan Thomson" < athomson@lookingglasscyber.com >




To:


cti-stix@lists.oasis-open.org ,
cti@lists.oasis-open.org




Cc:


"Interoperability Subcommittee" < cti-interoperability@lists.oasis-open.org >




Date:


Mon, Mar 12, 2018 8:16 PM




Subject:


[cti-stix] STIX Preferred Documents For Review/Comments





<mime-attachment.png>
 
All – I have posted 2 documents that have been drafted by OASIS legal team for

 


Instructions on STIX Preferred program


Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :
STIX
Preferred Instructions Draft
<mime-attachment.png>

Description
STIX Preferred Instructions Draft
Download
Latest Revision
Public
Download Link
 





Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft
Download
Latest Revision
Public
Download Link









 
 

The instructions/terms of use documents refer to the test plan documents.

 
However, the intention is that these documents do not have to be revised for every change to the test documents and act more as a general framework for the overall program going forward.
 
Please consider that these are not replacements for our test documents but rather a framework around them.
 
Allan
 

From: Jason Keirstead <Jason.Keirstead@ca.ibm.com>
Date: Monday, March 12, 2018 at 8:16 PM
To: Allan Thomson <athomson@lookingglasscyber.com>
Cc: "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>, Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org>
Subject: Re: [cti-stix] STIX Preferred Documents For Review/Comments


 

Isn't the personas being tested missing?

Sent from IBM Verse


Allan Thomson --- [cti-stix] STIX Preferred Documents For Review/Comments ---



 




From:


"Allan Thomson" <athomson@lookingglasscyber.com>




To:


cti-stix@lists.oasis-open.org, cti@lists.oasis-open.org




Cc:


"Interoperability Subcommittee" <cti-interoperability@lists.oasis-open.org>




Date:


Mon, Mar 12, 2018 8:16 PM




Subject:


[cti-stix] STIX Preferred Documents For Review/Comments





 

All – I have posted 2 documents that have been drafted by OASIS legal team for

 

Instructions on STIX Preferred program Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft





Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft



Description
STIX Preferred Terms of Use Draft
Download
Latest Revision
Public
Download Link







 

 

One week is not a sufficient amount of time. Bret   From: cti-interoperability@lists.oasis-open.org <cti-interoperability@lists.oasis-open.org> on behalf of Allan Thomson <athomson@lookingglasscyber.com> Sent: Monday, March 12, 2018 5:15 PM To: cti-stix@lists.oasis-open.org; cti@lists.oasis-open.org Cc: Interoperability Subcommittee Subject: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments   All – I have posted 2 documents that have been drafted by OASIS legal team for   Instructions on STIX Preferred program Terms of use on STIX Preferred program   Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).   SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.   If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.   We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.   We expect the ballot to start sometime after 19 th March.   Allan   Document Name :  STIX Preferred Instructions Draft Description STIX Preferred Instructions Draft  Download Latest Revision Public Download Link   Document Name : STIX Preferred Terms of Use Draft Description STIX Preferred Terms of Use Draft Download Latest Revision Public Download Link  

Agree with Bret - especially if we engage our legal dept.   Cheers!   ~r   ron.williams@us.ibm.com stsm chief architect x-force exchange   master inventor ibm mobile +1.512.633.7711] May you live as long as you want, and love as long as you live - Robert Heinlein http://exchange.xforce.ibmcloud.com preferred contact: on Slack @ronwilliams    
Original message ----- From: Bret Jordan <Bret_Jordan@symantec.com> Sent by: <cti-interoperability@lists.oasis-open.org> To: Allan Thomson <athomson@lookingglasscyber.com>, cti-stix@lists.oasis-open.org <cti-stix@lists.oasis-open.org>, cti@lists.oasis-open.org <cti@lists.oasis-open.org> Cc: Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org> Subject: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments Date: Tue, Mar 13, 2018 1:49 AM   One week is not a sufficient amount of time.   Bret     From: cti-interoperability@lists.oasis-open.org <cti-interoperability@lists.oasis-open.org> on behalf of Allan Thomson <athomson@lookingglasscyber.com> Sent: Monday, March 12, 2018 5:15 PM To: cti-stix@lists.oasis-open.org; cti@lists.oasis-open.org Cc: Interoperability Subcommittee Subject: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments   All – I have posted 2 documents that have been drafted by OASIS legal team for   Instructions on STIX Preferred program Terms of use on STIX Preferred program   Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).   SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.   If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.   We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.   We expect the ballot to start sometime after 19 th March.   Allan   Document Name :  STIX Preferred Instructions Draft Description STIX Preferred Instructions Draft  Download Latest Revision Public Download Link   Document Name : STIX Preferred Terms of Use Draft Description STIX Preferred Terms of Use Draft Download Latest Revision Public Download Link    

Hi Ron – The intent is that this 1 week period + the ballot period will allow overall sufficient time for review/comments.
 
regards
 
Allan

From: Ron Williams <Ron.Williams@us.ibm.com>
Date: Tuesday, March 13, 2018 at 5:34 AM
To: "Bret_Jordan@symantec.com" <Bret_Jordan@symantec.com>
Cc: Allan Thomson <athomson@lookingglasscyber.com>, Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org>, "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>
Subject: Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 



Agree with Bret - especially if we engage our legal dept.


 


Cheers!








 


~r


 


ron.williams@us.ibm.com
stsm chief architect x-force exchange   master inventor ibm mobile +1.512.633.7711]


" May
you live as long as you want, and love as long as you live " - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams










 


 



Original message -----
From: Bret Jordan <Bret_Jordan@symantec.com>
Sent by: <cti-interoperability@lists.oasis-open.org>
To: Allan Thomson <athomson@lookingglasscyber.com>, "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>
Cc: Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org>
Subject: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM
 



One week is not a sufficient amount of time.
 
Bret
 
 




From: cti-interoperability@lists.oasis-open.org <cti-interoperability@lists.oasis-open.org>
on behalf of Allan Thomson <athomson@lookingglasscyber.com>
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org; cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 




All – I have posted 2 documents that have been drafted by OASIS legal team for
 


Instructions on STIX Preferred program

Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft

Download
Latest Revision
Public
Download Link






 






 

Hi, Alan,
 
When do you estimate the end of the ballot period?

 
We will try our best to get it through our legal by then,
but it usually takes a month (and already a day or two have
already passed…).
 
Regards,
 
Ryu
 


From: cti@lists.oasis-open.org [mailto:cti@lists.oasis-open.org]
On Behalf Of Allan Thomson
Sent: Tuesday, March 13, 2018 9:56 PM
To: Ron Williams <Ron.Williams@us.ibm.com>; Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org; cti-stix@lists.oasis-open.org; cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi Ron – The intent is that this 1 week period + the ballot period will allow overall sufficient time for review/comments.
 
regards
 
Allan

From:
Ron Williams < Ron.Williams@us.ibm.com >
Date: Tuesday, March 13, 2018 at 5:34 AM
To: " Bret_Jordan@symantec.com " < Bret_Jordan@symantec.com >
Cc: Allan Thomson < athomson@lookingglasscyber.com >, Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 



Agree with Bret - especially if we engage our legal dept.


 


Cheers!








 


~r


 


ron.williams@us.ibm.com
stsm chief architect x-force exchange   master inventor ibm mobile +1.512.633.7711]


" May you live as long as you want,
and love as long as you live " - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams










 


 



Original message -----
From: Bret Jordan < Bret_Jordan@symantec.com >
Sent by: < cti-interoperability@lists.oasis-open.org >
To: Allan Thomson < athomson@lookingglasscyber.com >,
" cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM
 

One week is not a sufficient amount of time.
 
Bret
 
 




From:
cti-interoperability@lists.oasis-open.org < cti-interoperability@lists.oasis-open.org >
on behalf of Allan Thomson < athomson@lookingglasscyber.com >
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 




All – I have posted 2 documents that have been drafted by OASIS legal team for
 


Instructions on STIX Preferred program

Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft

Download
Latest Revision
Public
Download Link





 






 


 

Ryu – Our goal is to ensure the TC has time to review and provide feedback on the documents. It does no one any good if we have documents/framework for STIX Preferred that are either not reviewed at all or worse not acceptable to the majority
of the TC.
 
My goal of setting up milestones for review was to initiate an urgency to getting legal teams involved as I know * exactly * how long some legal departments take to review documents.
 
So thank you to everyone that has initiated that review quickly.
 
For the ballot the tentative plan was to initiate the start of the ballot over the next couple of weeks.

 

Allan Thomson
CTO
+1-408-331-6646

LookingGlass Cyber Solutions

From: "masuoka.ryusuke@jp.fujitsu.com" <masuoka.ryusuke@jp.fujitsu.com>
Date: Tuesday, March 13, 2018 at 6:46 PM
To: Allan Thomson <athomson@lookingglasscyber.com>, Ron Williams <Ron.Williams@us.ibm.com>, "Bret_Jordan@symantec.com" <Bret_Jordan@symantec.com>
Cc: Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org>, "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>
Subject: RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 

Hi, Alan,
 
When do you estimate the end of the ballot period?

 
We will try our best to get it through our legal by then,
but it usually takes a month (and already a day or two have
already passed…).
 
Regards,
 
Ryu
 


From: cti@lists.oasis-open.org [mailto:cti@lists.oasis-open.org]
On Behalf Of Allan Thomson
Sent: Tuesday, March 13, 2018 9:56 PM
To: Ron Williams <Ron.Williams@us.ibm.com>; Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org; cti-stix@lists.oasis-open.org; cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi Ron – The intent is that this 1 week period + the ballot period will allow overall sufficient time for review/comments.
 
regards
 
Allan

From: Ron Williams < Ron.Williams@us.ibm.com >
Date: Tuesday, March 13, 2018 at 5:34 AM
To: " Bret_Jordan@symantec.com " < Bret_Jordan@symantec.com >
Cc: Allan Thomson < athomson@lookingglasscyber.com >, Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 



Agree with Bret - especially if we engage our legal dept.


 


Cheers!








 


~r


 


ron.williams@us.ibm.com
stsm chief architect x-force exchange   master inventor ibm mobile +1.512.633.7711]


" May
you live as long as you want, and love as long as you live " - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams










 


 



Original message -----
From: Bret Jordan < Bret_Jordan@symantec.com >
Sent by: < cti-interoperability@lists.oasis-open.org >
To: Allan Thomson < athomson@lookingglasscyber.com >,
" cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org "
< cti@lists.oasis-open.org >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM
 

One week is not a sufficient amount of time.
 
Bret
 
 




From:
cti-interoperability@lists.oasis-open.org
< cti-interoperability@lists.oasis-open.org >
on behalf of Allan Thomson < athomson@lookingglasscyber.com >
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 




All – I have posted 2 documents that have been drafted by OASIS legal team for
 


Instructions on STIX Preferred program

Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft

Download
Latest Revision
Public
Download Link






 






 


 

Hi, Allan,
 
Thank you. Got the idea and the sense of urgency.
Will start working on immediately.
 
Regards,
 
Ryu
 


From: cti@lists.oasis-open.org [mailto:cti@lists.oasis-open.org]
On Behalf Of Allan Thomson
Sent: Wednesday, March 14, 2018 10:13 PM
To: Masuoka, Ryusuke/ ??
?? <masuoka.ryusuke@jp.fujitsu.com>; Ron Williams <Ron.Williams@us.ibm.com>; Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org; cti-stix@lists.oasis-open.org; cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Ryu – Our goal is to ensure the TC has time to review and provide feedback on the documents. It does no one any good if we have documents/framework for STIX Preferred that are either not reviewed at all or worse not acceptable
to the majority of the TC.
 
My goal of setting up milestones for review was to initiate an urgency to getting legal teams involved as I know * exactly * how long some legal departments take to review documents.
 
So thank you to everyone that has initiated that review quickly.
 
For the ballot the tentative plan was to initiate the start of the ballot over the next couple of weeks.

 

Allan Thomson
CTO
+1-408-331-6646

LookingGlass Cyber Solutions

From:
" masuoka.ryusuke@jp.fujitsu.com " < masuoka.ryusuke@jp.fujitsu.com >
Date: Tuesday, March 13, 2018 at 6:46 PM
To: Allan Thomson < athomson@lookingglasscyber.com >, Ron Williams < Ron.Williams@us.ibm.com >, " Bret_Jordan@symantec.com "
< Bret_Jordan@symantec.com >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 

Hi, Alan,
 
When do you estimate the end of the ballot period?

 
We will try our best to get it through our legal by then,
but it usually takes a month (and already a day or two have
already passed … ).
 
Regards,
 
Ryu
 


From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Tuesday, March 13, 2018 9:56 PM
To: Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi Ron – The intent is that this 1 week period + the ballot period will allow overall sufficient time for review/comments.
 
regards
 
Allan

From:
Ron Williams < Ron.Williams@us.ibm.com >
Date: Tuesday, March 13, 2018 at 5:34 AM
To: " Bret_Jordan@symantec.com " < Bret_Jordan@symantec.com >
Cc: Allan Thomson < athomson@lookingglasscyber.com >, Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 



Agree with Bret - especially if we engage our legal dept.


 


Cheers!








 


~r


 


ron.williams@us.ibm.com
stsm chief architect x-force exchange   master inventor ibm mobile +1.512.633.7711]


" May you live as long as you want,
and love as long as you live " - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams










 


 



Original message -----
From: Bret Jordan < Bret_Jordan@symantec.com >
Sent by: < cti-interoperability@lists.oasis-open.org >
To: Allan Thomson < athomson@lookingglasscyber.com >,
" cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM
 

One week is not a sufficient amount of time.
 
Bret
 
 




From:
cti-interoperability@lists.oasis-open.org < cti-interoperability@lists.oasis-open.org >
on behalf of Allan Thomson < athomson@lookingglasscyber.com >
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 




All – I have posted 2 documents that have been drafted by OASIS legal team for
 


Instructions on STIX Preferred program

Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft

Download
Latest Revision
Public
Download Link





 






 


 

Hi, Allan,
 
Thank you. Got the idea and the sense of urgency.
Will start working on immediately.
 
Regards,
 
Ryu
 


From: cti@lists.oasis-open.org [mailto:cti@lists.oasis-open.org]
On Behalf Of Allan Thomson
Sent: Wednesday, March 14, 2018 10:13 PM
To: Masuoka, Ryusuke/ ??
?? <masuoka.ryusuke@jp.fujitsu.com>; Ron Williams <Ron.Williams@us.ibm.com>; Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org; cti-stix@lists.oasis-open.org; cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Ryu – Our goal is to ensure the TC has time to review and provide feedback on the documents. It does no one any good if we have documents/framework for STIX Preferred that are either not reviewed at all or worse not acceptable
to the majority of the TC.
 
My goal of setting up milestones for review was to initiate an urgency to getting legal teams involved as I know * exactly * how long some legal departments take to review documents.
 
So thank you to everyone that has initiated that review quickly.
 
For the ballot the tentative plan was to initiate the start of the ballot over the next couple of weeks.

 

Allan Thomson
CTO
+1-408-331-6646

LookingGlass Cyber Solutions

From:
" masuoka.ryusuke@jp.fujitsu.com " < masuoka.ryusuke@jp.fujitsu.com >
Date: Tuesday, March 13, 2018 at 6:46 PM
To: Allan Thomson < athomson@lookingglasscyber.com >, Ron Williams < Ron.Williams@us.ibm.com >, " Bret_Jordan@symantec.com "
< Bret_Jordan@symantec.com >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 

Hi, Alan,
 
When do you estimate the end of the ballot period?

 
We will try our best to get it through our legal by then,
but it usually takes a month (and already a day or two have
already passed … ).
 
Regards,
 
Ryu
 


From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Tuesday, March 13, 2018 9:56 PM
To: Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi Ron – The intent is that this 1 week period + the ballot period will allow overall sufficient time for review/comments.
 
regards
 
Allan

From:
Ron Williams < Ron.Williams@us.ibm.com >
Date: Tuesday, March 13, 2018 at 5:34 AM
To: " Bret_Jordan@symantec.com " < Bret_Jordan@symantec.com >
Cc: Allan Thomson < athomson@lookingglasscyber.com >, Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 



Agree with Bret - especially if we engage our legal dept.


 


Cheers!








 


~r


 


ron.williams@us.ibm.com
stsm chief architect x-force exchange   master inventor ibm mobile +1.512.633.7711]


" May you live as long as you want,
and love as long as you live " - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams










 


 



Original message -----
From: Bret Jordan < Bret_Jordan@symantec.com >
Sent by: < cti-interoperability@lists.oasis-open.org >
To: Allan Thomson < athomson@lookingglasscyber.com >,
" cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM
 

One week is not a sufficient amount of time.
 
Bret
 
 




From:
cti-interoperability@lists.oasis-open.org < cti-interoperability@lists.oasis-open.org >
on behalf of Allan Thomson < athomson@lookingglasscyber.com >
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 




All – I have posted 2 documents that have been drafted by OASIS legal team for
 


Instructions on STIX Preferred program

Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft

Download
Latest Revision
Public
Download Link





 






 


 

Hi Allan,
 
It took a lot of time,

our legal team (Fujitsu) reviewed the documents and it is OK

except intentional blank (such as [admin-email-address]).
 
Thank you.
 
Regards,
 
--------------------------------------------------
Fujitsu System Integration Laboratories
Koji Yamada
 


From: cti@lists.oasis-open.org [mailto:cti@lists.oasis-open.org]
On Behalf Of Masuoka, Ryusuke
Sent: Thursday, March 15, 2018 10:31 AM
To: 'Allan Thomson' <athomson@lookingglasscyber.com>; Ron Williams <Ron.Williams@us.ibm.com>; Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org; cti-stix@lists.oasis-open.org; cti@lists.oasis-open.org
Subject: [cti] RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi, Allan,
 
Thank you. Got the idea and the sense of urgency.
Will start working on immediately.
 
Regards,
 
Ryu
 


From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Wednesday, March 14, 2018 10:13 PM
To: Masuoka, Ryusuke/ çå
çä < masuoka.ryusuke@jp.fujitsu.com >; Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Ryu Our goal is to ensure the TC has time to review and provide feedback on the documents. It does no one any good if we have documents/framework for STIX Preferred that are either not reviewed at all or worse not acceptable
to the majority of the TC.
 
My goal of setting up milestones for review was to initiate an urgency to getting legal teams involved as I know * exactly * how long some legal departments take to review documents.
 
So thank you to everyone that has initiated that review quickly.
 
For the ballot the tentative plan was to initiate the start of the ballot over the next couple of weeks.

 

Allan Thomson
CTO
+1-408-331-6646

LookingGlass Cyber Solutions

From:
" masuoka.ryusuke@jp.fujitsu.com " < masuoka.ryusuke@jp.fujitsu.com >
Date: Tuesday, March 13, 2018 at 6:46 PM
To: Allan Thomson < athomson@lookingglasscyber.com >, Ron Williams < Ron.Williams@us.ibm.com >, " Bret_Jordan@symantec.com "
< Bret_Jordan@symantec.com >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 

Hi, Alan,
 
When do you estimate the end of the ballot period?

 
We will try our best to get it through our legal by then,
but it usually takes a month (and already a day or two have
already passed ).
 
Regards,
 
Ryu
 


From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Tuesday, March 13, 2018 9:56 PM
To: Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi Ron The intent is that this 1 week period + the ballot period will allow overall sufficient time for review/comments.
 
regards
 
Allan

From:
Ron Williams < Ron.Williams@us.ibm.com >
Date: Tuesday, March 13, 2018 at 5:34 AM
To: " Bret_Jordan@symantec.com " < Bret_Jordan@symantec.com >
Cc: Allan Thomson < athomson@lookingglasscyber.com >, Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 



Agree with Bret - especially if we engage our legal dept.


 


Cheers!








 


~r


 


ron.williams@us.ibm.com
stsm chief architect x-force exchange   master inventor ibm mobile +1.512.633.7711]


" May you live as long as you want,
and love as long as you live " - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams










 


 



Original message -----
From: Bret Jordan < Bret_Jordan@symantec.com >
Sent by: < cti-interoperability@lists.oasis-open.org >
To: Allan Thomson < athomson@lookingglasscyber.com >,
" cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM
 

One week is not a sufficient amount of time.
 
Bret
 
 




From:
cti-interoperability@lists.oasis-open.org < cti-interoperability@lists.oasis-open.org >
on behalf of Allan Thomson < athomson@lookingglasscyber.com >
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 




All I have posted 2 documents that have been drafted by OASIS legal team for
 


Instructions on STIX Preferred program

Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft

Download
Latest Revision
Public
Download Link





 






 


 

Hi Allan,
 
It took a lot of time,

our legal team (Fujitsu) reviewed the documents and it is OK

except intentional blank (such as [admin-email-address]).
 
Thank you.
 
Regards,
 
--------------------------------------------------
Fujitsu System Integration Laboratories
Koji Yamada
 


From: cti@lists.oasis-open.org [mailto:cti@lists.oasis-open.org]
On Behalf Of Masuoka, Ryusuke
Sent: Thursday, March 15, 2018 10:31 AM
To: 'Allan Thomson' <athomson@lookingglasscyber.com>; Ron Williams <Ron.Williams@us.ibm.com>; Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org; cti-stix@lists.oasis-open.org; cti@lists.oasis-open.org
Subject: [cti] RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi, Allan,
 
Thank you. Got the idea and the sense of urgency.
Will start working on immediately.
 
Regards,
 
Ryu
 


From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Wednesday, March 14, 2018 10:13 PM
To: Masuoka, Ryusuke/ çå
çä < masuoka.ryusuke@jp.fujitsu.com >; Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Ryu Our goal is to ensure the TC has time to review and provide feedback on the documents. It does no one any good if we have documents/framework for STIX Preferred that are either not reviewed at all or worse not acceptable
to the majority of the TC.
 
My goal of setting up milestones for review was to initiate an urgency to getting legal teams involved as I know * exactly * how long some legal departments take to review documents.
 
So thank you to everyone that has initiated that review quickly.
 
For the ballot the tentative plan was to initiate the start of the ballot over the next couple of weeks.

 

Allan Thomson
CTO
+1-408-331-6646

LookingGlass Cyber Solutions

From:
" masuoka.ryusuke@jp.fujitsu.com " < masuoka.ryusuke@jp.fujitsu.com >
Date: Tuesday, March 13, 2018 at 6:46 PM
To: Allan Thomson < athomson@lookingglasscyber.com >, Ron Williams < Ron.Williams@us.ibm.com >, " Bret_Jordan@symantec.com "
< Bret_Jordan@symantec.com >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 

Hi, Alan,
 
When do you estimate the end of the ballot period?

 
We will try our best to get it through our legal by then,
but it usually takes a month (and already a day or two have
already passed ).
 
Regards,
 
Ryu
 


From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Tuesday, March 13, 2018 9:56 PM
To: Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi Ron The intent is that this 1 week period + the ballot period will allow overall sufficient time for review/comments.
 
regards
 
Allan

From:
Ron Williams < Ron.Williams@us.ibm.com >
Date: Tuesday, March 13, 2018 at 5:34 AM
To: " Bret_Jordan@symantec.com " < Bret_Jordan@symantec.com >
Cc: Allan Thomson < athomson@lookingglasscyber.com >, Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 



Agree with Bret - especially if we engage our legal dept.


 


Cheers!








 


~r


 


ron.williams@us.ibm.com
stsm chief architect x-force exchange   master inventor ibm mobile +1.512.633.7711]


" May you live as long as you want,
and love as long as you live " - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams










 


 



Original message -----
From: Bret Jordan < Bret_Jordan@symantec.com >
Sent by: < cti-interoperability@lists.oasis-open.org >
To: Allan Thomson < athomson@lookingglasscyber.com >,
" cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM
 

One week is not a sufficient amount of time.
 
Bret
 
 




From:
cti-interoperability@lists.oasis-open.org < cti-interoperability@lists.oasis-open.org >
on behalf of Allan Thomson < athomson@lookingglasscyber.com >
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 




All I have posted 2 documents that have been drafted by OASIS legal team for
 


Instructions on STIX Preferred program

Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft

Download
Latest Revision
Public
Download Link





 






 


 

Koji:
Please extend our thanks to your legal team for taking a close
look at these documents.
Jane Ginn


On 8/29/2018 6:53 PM, Yamada, Koji
wrote:







Hi Allan,

It took a lot of time,

our legal team (Fujitsu) reviewed the documents
and it is OK

except intentional blank (such as
[admin-email-address]).

Thank you.

Regards,

--------------------------------------------------
Fujitsu System Integration Laboratories
Koji Yamada



From: cti@lists.oasis-open.org
[ mailto:cti@lists.oasis-open.org ]
On Behalf Of Masuoka, Ryusuke
Sent: Thursday, March 15, 2018 10:31 AM
To: 'Allan Thomson'
<athomson@lookingglasscyber.com> ; Ron Williams
<Ron.Williams@us.ibm.com> ;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ; cti@lists.oasis-open.org
Subject: [cti] RE: [cti-interoperability] Re:
[EXT] [cti-interoperability] STIX Preferred Documents
For Review/Comments



Hi, Allan,

Thank you. Got the idea
and the sense of urgency.
Will start working on
immediately.

Regards,

Ryu



From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Wednesday, March 14, 2018 10:13 PM
To: Masuoka, Ryusuke/ çå
çä < masuoka.ryusuke@jp.fujitsu.com >;
Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re:
[EXT] [cti-interoperability] STIX Preferred Documents
For Review/Comments



Ryu Our goal is to
ensure the TC has time to review and provide feedback on the
documents. It does no one any good if we have
documents/framework for STIX Preferred that are either not
reviewed at all or worse not acceptable to the majority of
the TC.

My goal of setting up
milestones for review was to initiate an urgency to getting
legal teams involved as I know * exactly * how long
some legal departments take to review documents.

So thank you to everyone
that has initiated that review quickly.

For the ballot the
tentative plan was to initiate the start of the ballot over
the next couple of weeks.



Allan
Thomson
CTO
+1-408-331-6646

LookingGlass
Cyber Solutions

From:
masuoka.ryusuke@jp.fujitsu.com
< masuoka.ryusuke@jp.fujitsu.com >
Date: Tuesday, March 13, 2018 at 6:46 PM
To: Allan Thomson < athomson@lookingglasscyber.com >,
Ron Williams < Ron.Williams@us.ibm.com >,
Bret_Jordan@symantec.com
< Bret_Jordan@symantec.com >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >,
cti-stix@lists.oasis-open.org
< cti-stix@lists.oasis-open.org >,
cti@lists.oasis-open.org
< cti@lists.oasis-open.org >
Subject: RE: [cti-interoperability] Re: [EXT]
[cti-interoperability] STIX Preferred Documents For
Review/Comments




Hi, Alan,

When do you estimate
the end of the ballot period?


We will try our best to
get it through our legal by then,
but it usually takes a
month (and already a day or two have
already passed ).

Regards,

Ryu



From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Tuesday, March 13, 2018 9:56 PM
To: Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re:
[EXT] [cti-interoperability] STIX Preferred Documents
For Review/Comments



Hi Ron The intent is
that this 1 week period + the ballot period will allow
overall sufficient time for review/comments.

regards

Allan

From:
Ron Williams < Ron.Williams@us.ibm.com >
Date: Tuesday, March 13, 2018 at 5:34 AM
To: Bret_Jordan@symantec.com
< Bret_Jordan@symantec.com >
Cc: Allan Thomson < athomson@lookingglasscyber.com >,
Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >,
cti-stix@lists.oasis-open.org
< cti-stix@lists.oasis-open.org >,
cti@lists.oasis-open.org
< cti@lists.oasis-open.org >
Subject: Re: [cti-interoperability] Re: [EXT]
[cti-interoperability] STIX Preferred Documents For
Review/Comments






Agree with Bret - especially if we engage
our legal dept.





Cheers!











~r





ron.williams@us.ibm.com
stsm chief architect
x-force exchange master inventor ibm
mobile +1.512.633.7711]


May you live as long as you
want, and love as long as you live - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams

















Original message -----
From: Bret Jordan < Bret_Jordan@symantec.com >
Sent by: < cti-interoperability@lists.oasis-open.org >
To: Allan Thomson < athomson@lookingglasscyber.com >, cti-stix@lists.oasis-open.org < cti-stix@lists.oasis-open.org >, cti@lists.oasis-open.org < cti@lists.oasis-open.org >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: [cti-interoperability] Re: [EXT]
[cti-interoperability] STIX Preferred Documents For
Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM


One week is not a
sufficient amount of time.

Bret






From:
cti-interoperability@lists.oasis-open.org < cti-interoperability@lists.oasis-open.org > on behalf of Allan
Thomson < athomson@lookingglasscyber.com >
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability]
STIX Preferred Documents For Review/Comments







All I have
posted 2 documents that have been drafted by
OASIS legal team for



Instructions
on STIX Preferred program


Terms
of use on STIX Preferred program


Please
review these documents and if you have any
comments or concerns please submit them to the
Interop sub-committee by 19 th March
(1 week from today).

SUGGESTION:
Have your legal or GC teams also review these
documents if you plan to have your
organization participate in STIX Preferred.

If you
would prefer to raise your concerns in person
please plan to attend the Interop sub-committee
meetings on Weds 9am PST. Details are on Kavi.

We plan to
do a ballot on formal TC approval of these
documents but we wanted to solicit
feedback/comments before we do that.

We expect
the ballot to start sometime after 19 th
March.

Allan

Document Name : STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft
Download
Latest Revision
Public
Download Link





Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use
Draft

Download
Latest Revision
Public
Download Link



















--
R. Jane Ginn, MSIA, MRP
Secretary, Cyber Threat Intelligence Technical Committee (CTI TC)
OASIS
jg@ctin.us
+1(928)399-0509

Koji:
Please extend our thanks to your legal team for taking a close
look at these documents.
Jane Ginn


On 8/29/2018 6:53 PM, Yamada, Koji
wrote:







Hi Allan,

It took a lot of time,

our legal team (Fujitsu) reviewed the documents
and it is OK

except intentional blank (such as
[admin-email-address]).

Thank you.

Regards,

--------------------------------------------------
Fujitsu System Integration Laboratories
Koji Yamada



From: cti@lists.oasis-open.org
[ mailto:cti@lists.oasis-open.org ]
On Behalf Of Masuoka, Ryusuke
Sent: Thursday, March 15, 2018 10:31 AM
To: 'Allan Thomson'
<athomson@lookingglasscyber.com> ; Ron Williams
<Ron.Williams@us.ibm.com> ;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ; cti@lists.oasis-open.org
Subject: [cti] RE: [cti-interoperability] Re:
[EXT] [cti-interoperability] STIX Preferred Documents
For Review/Comments



Hi, Allan,

Thank you. Got the idea
and the sense of urgency.
Will start working on
immediately.

Regards,

Ryu



From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Wednesday, March 14, 2018 10:13 PM
To: Masuoka, Ryusuke/ çå
çä < masuoka.ryusuke@jp.fujitsu.com >;
Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re:
[EXT] [cti-interoperability] STIX Preferred Documents
For Review/Comments



Ryu Our goal is to
ensure the TC has time to review and provide feedback on the
documents. It does no one any good if we have
documents/framework for STIX Preferred that are either not
reviewed at all or worse not acceptable to the majority of
the TC.

My goal of setting up
milestones for review was to initiate an urgency to getting
legal teams involved as I know * exactly * how long
some legal departments take to review documents.

So thank you to everyone
that has initiated that review quickly.

For the ballot the
tentative plan was to initiate the start of the ballot over
the next couple of weeks.



Allan
Thomson
CTO
+1-408-331-6646

LookingGlass
Cyber Solutions

From:
masuoka.ryusuke@jp.fujitsu.com
< masuoka.ryusuke@jp.fujitsu.com >
Date: Tuesday, March 13, 2018 at 6:46 PM
To: Allan Thomson < athomson@lookingglasscyber.com >,
Ron Williams < Ron.Williams@us.ibm.com >,
Bret_Jordan@symantec.com
< Bret_Jordan@symantec.com >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >,
cti-stix@lists.oasis-open.org
< cti-stix@lists.oasis-open.org >,
cti@lists.oasis-open.org
< cti@lists.oasis-open.org >
Subject: RE: [cti-interoperability] Re: [EXT]
[cti-interoperability] STIX Preferred Documents For
Review/Comments




Hi, Alan,

When do you estimate
the end of the ballot period?


We will try our best to
get it through our legal by then,
but it usually takes a
month (and already a day or two have
already passed ).

Regards,

Ryu



From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Tuesday, March 13, 2018 9:56 PM
To: Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re:
[EXT] [cti-interoperability] STIX Preferred Documents
For Review/Comments



Hi Ron The intent is
that this 1 week period + the ballot period will allow
overall sufficient time for review/comments.

regards

Allan

From:
Ron Williams < Ron.Williams@us.ibm.com >
Date: Tuesday, March 13, 2018 at 5:34 AM
To: Bret_Jordan@symantec.com
< Bret_Jordan@symantec.com >
Cc: Allan Thomson < athomson@lookingglasscyber.com >,
Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >,
cti-stix@lists.oasis-open.org
< cti-stix@lists.oasis-open.org >,
cti@lists.oasis-open.org
< cti@lists.oasis-open.org >
Subject: Re: [cti-interoperability] Re: [EXT]
[cti-interoperability] STIX Preferred Documents For
Review/Comments






Agree with Bret - especially if we engage
our legal dept.





Cheers!











~r





ron.williams@us.ibm.com
stsm chief architect
x-force exchange master inventor ibm
mobile +1.512.633.7711]


May you live as long as you
want, and love as long as you live - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams

















Original message -----
From: Bret Jordan < Bret_Jordan@symantec.com >
Sent by: < cti-interoperability@lists.oasis-open.org >
To: Allan Thomson < athomson@lookingglasscyber.com >, cti-stix@lists.oasis-open.org < cti-stix@lists.oasis-open.org >, cti@lists.oasis-open.org < cti@lists.oasis-open.org >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: [cti-interoperability] Re: [EXT]
[cti-interoperability] STIX Preferred Documents For
Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM


One week is not a
sufficient amount of time.

Bret






From:
cti-interoperability@lists.oasis-open.org < cti-interoperability@lists.oasis-open.org > on behalf of Allan
Thomson < athomson@lookingglasscyber.com >
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability]
STIX Preferred Documents For Review/Comments







All I have
posted 2 documents that have been drafted by
OASIS legal team for



Instructions
on STIX Preferred program


Terms
of use on STIX Preferred program


Please
review these documents and if you have any
comments or concerns please submit them to the
Interop sub-committee by 19 th March
(1 week from today).

SUGGESTION:
Have your legal or GC teams also review these
documents if you plan to have your
organization participate in STIX Preferred.

If you
would prefer to raise your concerns in person
please plan to attend the Interop sub-committee
meetings on Weds 9am PST. Details are on Kavi.

We plan to
do a ballot on formal TC approval of these
documents but we wanted to solicit
feedback/comments before we do that.

We expect
the ballot to start sometime after 19 th
March.

Allan

Document Name : STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft
Download
Latest Revision
Public
Download Link





Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use
Draft

Download
Latest Revision
Public
Download Link



















--
R. Jane Ginn, MSIA, MRP
Secretary, Cyber Threat Intelligence Technical Committee (CTI TC)
OASIS
jg@ctin.us
+1(928)399-0509

Koji:
Please extend our thanks to your legal team for taking a close
look at these documents.
Jane Ginn


On 8/29/2018 6:53 PM, Yamada, Koji
wrote:







Hi Allan,

It took a lot of time,

our legal team (Fujitsu) reviewed the documents
and it is OK

except intentional blank (such as
[admin-email-address]).

Thank you.

Regards,

--------------------------------------------------
Fujitsu System Integration Laboratories
Koji Yamada



From: cti@lists.oasis-open.org
[ mailto:cti@lists.oasis-open.org ]
On Behalf Of Masuoka, Ryusuke
Sent: Thursday, March 15, 2018 10:31 AM
To: 'Allan Thomson'
<athomson@lookingglasscyber.com> ; Ron Williams
<Ron.Williams@us.ibm.com> ;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ; cti@lists.oasis-open.org
Subject: [cti] RE: [cti-interoperability] Re:
[EXT] [cti-interoperability] STIX Preferred Documents
For Review/Comments



Hi, Allan,

Thank you. Got the idea
and the sense of urgency.
Will start working on
immediately.

Regards,

Ryu



From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Wednesday, March 14, 2018 10:13 PM
To: Masuoka, Ryusuke/ çå
çä < masuoka.ryusuke@jp.fujitsu.com >;
Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re:
[EXT] [cti-interoperability] STIX Preferred Documents
For Review/Comments



Ryu Our goal is to
ensure the TC has time to review and provide feedback on the
documents. It does no one any good if we have
documents/framework for STIX Preferred that are either not
reviewed at all or worse not acceptable to the majority of
the TC.

My goal of setting up
milestones for review was to initiate an urgency to getting
legal teams involved as I know * exactly * how long
some legal departments take to review documents.

So thank you to everyone
that has initiated that review quickly.

For the ballot the
tentative plan was to initiate the start of the ballot over
the next couple of weeks.



Allan
Thomson
CTO
+1-408-331-6646

LookingGlass
Cyber Solutions

From:
masuoka.ryusuke@jp.fujitsu.com
< masuoka.ryusuke@jp.fujitsu.com >
Date: Tuesday, March 13, 2018 at 6:46 PM
To: Allan Thomson < athomson@lookingglasscyber.com >,
Ron Williams < Ron.Williams@us.ibm.com >,
Bret_Jordan@symantec.com
< Bret_Jordan@symantec.com >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >,
cti-stix@lists.oasis-open.org
< cti-stix@lists.oasis-open.org >,
cti@lists.oasis-open.org
< cti@lists.oasis-open.org >
Subject: RE: [cti-interoperability] Re: [EXT]
[cti-interoperability] STIX Preferred Documents For
Review/Comments




Hi, Alan,

When do you estimate
the end of the ballot period?


We will try our best to
get it through our legal by then,
but it usually takes a
month (and already a day or two have
already passed ).

Regards,

Ryu



From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Tuesday, March 13, 2018 9:56 PM
To: Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re:
[EXT] [cti-interoperability] STIX Preferred Documents
For Review/Comments



Hi Ron The intent is
that this 1 week period + the ballot period will allow
overall sufficient time for review/comments.

regards

Allan

From:
Ron Williams < Ron.Williams@us.ibm.com >
Date: Tuesday, March 13, 2018 at 5:34 AM
To: Bret_Jordan@symantec.com
< Bret_Jordan@symantec.com >
Cc: Allan Thomson < athomson@lookingglasscyber.com >,
Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >,
cti-stix@lists.oasis-open.org
< cti-stix@lists.oasis-open.org >,
cti@lists.oasis-open.org
< cti@lists.oasis-open.org >
Subject: Re: [cti-interoperability] Re: [EXT]
[cti-interoperability] STIX Preferred Documents For
Review/Comments






Agree with Bret - especially if we engage
our legal dept.





Cheers!











~r





ron.williams@us.ibm.com
stsm chief architect
x-force exchange master inventor ibm
mobile +1.512.633.7711]


May you live as long as you
want, and love as long as you live - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams

















Original message -----
From: Bret Jordan < Bret_Jordan@symantec.com >
Sent by: < cti-interoperability@lists.oasis-open.org >
To: Allan Thomson < athomson@lookingglasscyber.com >, cti-stix@lists.oasis-open.org < cti-stix@lists.oasis-open.org >, cti@lists.oasis-open.org < cti@lists.oasis-open.org >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: [cti-interoperability] Re: [EXT]
[cti-interoperability] STIX Preferred Documents For
Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM


One week is not a
sufficient amount of time.

Bret






From:
cti-interoperability@lists.oasis-open.org < cti-interoperability@lists.oasis-open.org > on behalf of Allan
Thomson < athomson@lookingglasscyber.com >
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability]
STIX Preferred Documents For Review/Comments







All I have
posted 2 documents that have been drafted by
OASIS legal team for



Instructions
on STIX Preferred program


Terms
of use on STIX Preferred program


Please
review these documents and if you have any
comments or concerns please submit them to the
Interop sub-committee by 19 th March
(1 week from today).

SUGGESTION:
Have your legal or GC teams also review these
documents if you plan to have your
organization participate in STIX Preferred.

If you
would prefer to raise your concerns in person
please plan to attend the Interop sub-committee
meetings on Weds 9am PST. Details are on Kavi.

We plan to
do a ballot on formal TC approval of these
documents but we wanted to solicit
feedback/comments before we do that.

We expect
the ballot to start sometime after 19 th
March.

Allan

Document Name : STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft
Download
Latest Revision
Public
Download Link





Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use
Draft

Download
Latest Revision
Public
Download Link



















--
R. Jane Ginn, MSIA, MRP
Secretary, Cyber Threat Intelligence Technical Committee (CTI TC)
OASIS
jg@ctin.us
+1(928)399-0509

Koji thanks for the confirmation.
 
Regarding the intentional blank. Are you suggesting we need to make a change to the template document ? Please clarify.
 
For other organizations awareness. These documents have yet to be formally approved by the TC and STIXPreferred program requires that they are approved.
 
After the next TC monthly meeting there will be a ballot for TC-approval of the documents.

 
If you need more time for your organization (and particularly your legal counsel) to review the documents please consider doing that now rather than waiting until the ballot comes out.
 
regards
 

Allan Thomson
CTO ( +1-408-331-6646)

LookingGlass Cyber Solutions
 

From: Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org> on behalf of "Yamada, Koji" <yamada.koji@jp.fujitsu.com>
Date: Wednesday, August 29, 2018 at 6:53 PM
To: "masuoka.ryusuke@jp.fujitsu.com" <masuoka.ryusuke@jp.fujitsu.com>, Allan Thomson <athomson@lookingglasscyber.com>, Ron Williams <Ron.Williams@us.ibm.com>, "Bret_Jordan@symantec.com" <Bret_Jordan@symantec.com>
Cc: Interoperability Subcommittee <cti-interoperability@lists.oasis-open.org>, "cti-stix@lists.oasis-open.org" <cti-stix@lists.oasis-open.org>, "cti@lists.oasis-open.org" <cti@lists.oasis-open.org>
Subject: RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 

Hi Allan,
 
It took a lot of time,

our legal team (Fujitsu) reviewed the documents and it is OK

except intentional blank (such as [admin-email-address]).
 
Thank you.
 
Regards,
 
--------------------------------------------------
Fujitsu System Integration Laboratories
Koji Yamada
 


From: cti@lists.oasis-open.org [mailto:cti@lists.oasis-open.org]
On Behalf Of Masuoka, Ryusuke
Sent: Thursday, March 15, 2018 10:31 AM
To: 'Allan Thomson' <athomson@lookingglasscyber.com>; Ron Williams <Ron.Williams@us.ibm.com>; Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org; cti-stix@lists.oasis-open.org; cti@lists.oasis-open.org
Subject: [cti] RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi, Allan,
 
Thank you. Got the idea and the sense of urgency.
Will start working on immediately.
 
Regards,
 
Ryu
 


From: cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Wednesday, March 14, 2018 10:13 PM
To: Masuoka, Ryusuke/ çå
çä < masuoka.ryusuke@jp.fujitsu.com >; Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Ryu Our goal is to ensure the TC has time to review and provide feedback on the documents. It does no one any good if we have documents/framework for STIX Preferred that are either not reviewed at all or worse not acceptable to the majority
of the TC.
 
My goal of setting up milestones for review was to initiate an urgency to getting legal teams involved as I know * exactly * how long some legal departments take to review documents.
 
So thank you to everyone that has initiated that review quickly.
 
For the ballot the tentative plan was to initiate the start of the ballot over the next couple of weeks.

 

Allan Thomson
CTO
+1-408-331-6646

LookingGlass Cyber Solutions

From: " masuoka.ryusuke@jp.fujitsu.com " < masuoka.ryusuke@jp.fujitsu.com >
Date: Tuesday, March 13, 2018 at 6:46 PM
To: Allan Thomson < athomson@lookingglasscyber.com >, Ron Williams < Ron.Williams@us.ibm.com >, " Bret_Jordan@symantec.com "
< Bret_Jordan@symantec.com >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 

Hi, Alan,
 
When do you estimate the end of the ballot period?

 
We will try our best to get it through our legal by then,
but it usually takes a month (and already a day or two have
already passed ).
 
Regards,
 
Ryu
 


From: cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Tuesday, March 13, 2018 9:56 PM
To: Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi Ron The intent is that this 1 week period + the ballot period will allow overall sufficient time for review/comments.
 
regards
 
Allan

From: Ron Williams < Ron.Williams@us.ibm.com >
Date: Tuesday, March 13, 2018 at 5:34 AM
To: " Bret_Jordan@symantec.com " < Bret_Jordan@symantec.com >
Cc: Allan Thomson < athomson@lookingglasscyber.com >, Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 



Agree with Bret - especially if we engage our legal dept.


 


Cheers!








 


~r


 


ron.williams@us.ibm.com
stsm chief architect x-force exchange   master inventor ibm mobile +1.512.633.7711]


" May you live as long as you want, and love as long as you
live " - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams










 


 



Original message -----
From: Bret Jordan < Bret_Jordan@symantec.com >
Sent by: < cti-interoperability@lists.oasis-open.org >
To: Allan Thomson < athomson@lookingglasscyber.com >, " cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org "
< cti@lists.oasis-open.org >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM
 

One week is not a sufficient amount of time.
 
Bret
 
 



From:
cti-interoperability@lists.oasis-open.org < cti-interoperability@lists.oasis-open.org >
on behalf of Allan Thomson < athomson@lookingglasscyber.com >
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 




All I have posted 2 documents that have been drafted by OASIS legal team for
 


Instructions on STIX Preferred program
Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft

Download
Latest Revision
Public
Download Link





 






 


 

Hi Allan,

 
>Regarding the intentional blank. Are you suggesting we need to make a change to the template document ?

No, you do not need to change.
 
Regards,
Koji Yamada
 


From: Allan Thomson [mailto:athomson@lookingglasscyber.com]

Sent: Thursday, August 30, 2018 11:33 PM
To: Yamada, Koji/ åç
åæ <yamada.koji@jp.fujitsu.com>; Masuoka, Ryusuke/ çå
çä <masuoka.ryusuke@jp.fujitsu.com>; Ron Williams <Ron.Williams@us.ibm.com>; Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org; cti-stix@lists.oasis-open.org; cti@lists.oasis-open.org
Subject: Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Koji thanks for the confirmation.
 
Regarding the intentional blank. Are you suggesting we need to make a change to the template document ? Please clarify.
 
For other organizations awareness. These documents have yet to be formally approved by the TC and STIXPreferred program requires that they are approved.
 
After the next TC monthly meeting there will be a ballot for TC-approval of the documents.

 
If you need more time for your organization (and particularly your legal counsel) to review the documents please consider doing that now rather than waiting until the ballot comes out.
 
regards
 

Allan Thomson
CTO ( +1-408-331-6646)

LookingGlass Cyber Solutions
 

From:
Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org > on behalf of "Yamada, Koji" < yamada.koji@jp.fujitsu.com >
Date: Wednesday, August 29, 2018 at 6:53 PM
To: " masuoka.ryusuke@jp.fujitsu.com " < masuoka.ryusuke@jp.fujitsu.com >, Allan Thomson < athomson@lookingglasscyber.com >,
Ron Williams < Ron.Williams@us.ibm.com >, " Bret_Jordan@symantec.com " < Bret_Jordan@symantec.com >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 

Hi Allan,
 
It took a lot of time,

our legal team (Fujitsu) reviewed the documents and it is OK

except intentional blank (such as [admin-email-address]).
 
Thank you.
 
Regards,
 
--------------------------------------------------
Fujitsu System Integration Laboratories
Koji Yamada
 


From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Masuoka, Ryusuke
Sent: Thursday, March 15, 2018 10:31 AM
To: 'Allan Thomson' < athomson@lookingglasscyber.com >; Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi, Allan,
 
Thank you. Got the idea and the sense of urgency.
Will start working on immediately.
 
Regards,
 
Ryu
 


From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Wednesday, March 14, 2018 10:13 PM
To: Masuoka, Ryusuke/ çå
çä < masuoka.ryusuke@jp.fujitsu.com >; Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Ryu Our goal is to ensure the TC has time to review and provide feedback on the documents. It does no one any good if we have documents/framework for STIX Preferred that are either not reviewed at all or worse not acceptable
to the majority of the TC.
 
My goal of setting up milestones for review was to initiate an urgency to getting legal teams involved as I know * exactly * how long some legal departments take to review documents.
 
So thank you to everyone that has initiated that review quickly.
 
For the ballot the tentative plan was to initiate the start of the ballot over the next couple of weeks.

 

Allan Thomson
CTO
+1-408-331-6646

LookingGlass Cyber Solutions

From:
" masuoka.ryusuke@jp.fujitsu.com " < masuoka.ryusuke@jp.fujitsu.com >
Date: Tuesday, March 13, 2018 at 6:46 PM
To: Allan Thomson < athomson@lookingglasscyber.com >, Ron Williams < Ron.Williams@us.ibm.com >, " Bret_Jordan@symantec.com "
< Bret_Jordan@symantec.com >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org " < cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: RE: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 

Hi, Alan,
 
When do you estimate the end of the ballot period?

 
We will try our best to get it through our legal by then,
but it usually takes a month (and already a day or two have
already passed ).
 
Regards,
 
Ryu
 


From:
cti@lists.oasis-open.org [ mailto:cti@lists.oasis-open.org ]
On Behalf Of Allan Thomson
Sent: Tuesday, March 13, 2018 9:56 PM
To: Ron Williams < Ron.Williams@us.ibm.com >;
Bret_Jordan@symantec.com
Cc: cti-interoperability@lists.oasis-open.org ;
cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Subject: [cti] Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 
Hi Ron The intent is that this 1 week period + the ballot period will allow overall sufficient time for review/comments.
 
regards
 
Allan

From:
Ron Williams < Ron.Williams@us.ibm.com >
Date: Tuesday, March 13, 2018 at 5:34 AM
To: " Bret_Jordan@symantec.com " < Bret_Jordan@symantec.com >
Cc: Allan Thomson < athomson@lookingglasscyber.com >, Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >, " cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >, " cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Subject: Re: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 



Agree with Bret - especially if we engage our legal dept.


 


Cheers!








 


~r


 


ron.williams@us.ibm.com
stsm chief architect x-force exchange   master inventor ibm mobile +1.512.633.7711]


" May you live as long as you want,
and love as long as you live " - Robert Heinlein


http://exchange.xforce.ibmcloud.com



preferred contact: on
Slack @ronwilliams










 


 



Original message -----
From: Bret Jordan < Bret_Jordan@symantec.com >
Sent by: < cti-interoperability@lists.oasis-open.org >
To: Allan Thomson < athomson@lookingglasscyber.com >,
" cti-stix@lists.oasis-open.org "
< cti-stix@lists.oasis-open.org >,
" cti@lists.oasis-open.org " < cti@lists.oasis-open.org >
Cc: Interoperability Subcommittee < cti-interoperability@lists.oasis-open.org >
Subject: [cti-interoperability] Re: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments
Date: Tue, Mar 13, 2018 1:49 AM
 

One week is not a sufficient amount of time.
 
Bret
 
 




From:
cti-interoperability@lists.oasis-open.org < cti-interoperability@lists.oasis-open.org >
on behalf of Allan Thomson < athomson@lookingglasscyber.com >
Sent: Monday, March 12, 2018 5:15 PM
To: cti-stix@lists.oasis-open.org ;
cti@lists.oasis-open.org
Cc: Interoperability Subcommittee
Subject: [EXT] [cti-interoperability] STIX Preferred Documents For Review/Comments


 




All I have posted 2 documents that have been drafted by OASIS legal team for
 


Instructions on STIX Preferred program

Terms of use on STIX Preferred program
 
Please review these documents and if you have any comments or concerns please submit them to the Interop sub-committee by 19 th March (1 week from today).
 
SUGGESTION: Have your legal or GC teams also review these documents if you plan to have your organization participate in STIX Preferred.
 
If you would prefer to raise your concerns in person please plan to attend the Interop sub-committee meetings on Weds 9am PST. Details are on Kavi.
 
We plan to do a ballot on formal TC approval of these documents but we wanted to solicit feedback/comments before we do that.
 
We expect the ballot to start sometime after 19 th March.
 
Allan
 
Document Name :  STIX
Preferred Instructions Draft




Description
STIX Preferred Instructions Draft 
Download
Latest Revision
Public
Download Link
 




Document Name :
STIX
Preferred Terms of Use Draft

Description
STIX Preferred Terms of Use Draft

Download
Latest Revision
Public
Download Link