OASIS Common Security Advisory Framework (CSAF) TC

Dear colleagues,
National CERTs and ISACs are often acting as multiplier: Taking advisories from original sources and adding additional context or information related to their community. However, they are currently tracked as "other". This makes it hard to include them in advisory prioritization rules. As they have an important function, the issue suggests to acknowledge this by adding a category "multiplier".

I hereby submit the following motion and request that if seconded and no objection received per this list before one week has passed on 2024-04-03 20:00 UTC to automatically carry.
The Chair usually states the result per mail to this list when the period has passed.

I, Thomas Schmidt, move to add a new party "multiplier" as suggested in https://github.com/oasis-tcs/csaf/issues/580 to CSAF 2.1.

Best wishes,
Thomas

Original Message:
Sent: 3/27/2024 2:58:00 PM
From: Thomas Schmidt
Subject: Motion #580

Dear colleagues,
National CERTs and ISACs are often acting as multiplier: Taking advisories from original sources and adding additional context or information related to their community. However, they are currently tracked as "other". This makes it hard to include them in advisory prioritization rules. As they have an important function, the issue suggests to acknowledge this by adding a category "multiplier".

I hereby submit the following motion and request that if seconded and no objection received per this list before one week has passed on 2024-04-03 20:00 UTC to automatically carry.
The Chair usually states the result per mail to this list when the period has passed.

I, Thomas Schmidt, move to add a new party "multiplier" as suggested in https://github.com/oasis-tcs/csaf/issues/580 to CSAF 2.1.

Best wishes,
Thomas

------------------------------
Best regards,

Omar Santos
------------------------------

Original Message:
Sent: 03-27-2024 15:22
From: Omar Santos
Subject: Motion #580

I, Omar Santos,  second this motion.

 

Regards,

 

Omar Santos

Distinguished Engineer

Security & Trust Organization

Cisco Systems

os@cisco.com  

My PGP/GPG: https://cs.co/gpg

 

Original Message:
Sent: 3/27/2024 2:58:00 PM
From: Thomas Schmidt
Subject: Motion #580

Dear colleagues,
National CERTs and ISACs are often acting as multiplier: Taking advisories from original sources and adding additional context or information related to their community. However, they are currently tracked as "other". This makes it hard to include them in advisory prioritization rules. As they have an important function, the issue suggests to acknowledge this by adding a category "multiplier".

I hereby submit the following motion and request that if seconded and no objection received per this list before one week has passed on 2024-04-03 20:00 UTC to automatically carry.
The Chair usually states the result per mail to this list when the period has passed.

I, Thomas Schmidt, move to add a new party "multiplier" as suggested in https://github.com/oasis-tcs/csaf/issues/580 to CSAF 2.1.

Best wishes,
Thomas