Work item:
|
X.1215 (ex X.ucstix)
|
Subject/title:
|
Use cases for structured threat information expression
|
Status:
|
Approved on 2019-01-30
|
Approval process:
|
TAP
|
Type of work item:
|
Recommendation
|
Version:
|
New
|
Equivalent number:
|
-
|
Timing:
|
-
|
Liaison:
|
OASIS, ETSI
|
Supporting members:
|
ETRI, KISA, USA, NICT
|
Summary:
|
Recommendation ITU-T X.1215 provides various use cases for how the structured threat information expression (STIX) language may be used to support cyber threat intelligence (CTI) and information sharing.
This Recommendation also describes concepts and functionality of the STIX language. It is targeted to support a range of use cases involved in cyber threat management, including analysing cyber threats, specifying indicator patterns for cyber threats, managing response activities, and sharing cyber threat information. With this kind of information, a security decision can be made on how to best defend against the threat. It is intended to support both more effective analysis and the continued exchange of cyber threat information. The STIX suite of specifications [b-STIX2.0] is maintained under the responsibility of Organization for the Advancement of Structured Information Standards (OASIS).
|
Comment:
|
-
|
Reference(s):
|
|
|
Historic references:
|
Contact(s):
|
|
ITU-T A.5 justification(s): |
|
|
|
First registration in the WP:
2017-04-05 17:14:57
|
Last update:
2019-02-05 11:11:27
|
|