Use cases for structured threat information expression
- 참여자
-
김종현, 김익균
- 연도
- 2019
- 표준화기구
- ITU
- 표준번호
- ITU-T X.1215
- 원문링크
-
https://www.itu.int/ITU-T/recommendations/rec.aspx?rec=13849
- 협약과제
-
19HH6200, 지능화된 악성코드 위협으로부터 ICT 인프라 보호,
김종현
- 요약
- Recommendation ITU-T X.1215 provides various use cases for how the structured threat information expression (STIX) language may be used to support cyber threat intelligence (CTI) and information sharing.
This Recommendation also describes concepts and functionality of the STIX language. It is targeted to support a range of use cases involved in cyber threat management, including analysing cyber threats, specifying indicator patterns for cyber threats, managing response activities and sharing cyber threat information. With this kind of information, a security decision can be made on how to best defend against the threat. It is intended to support both more effective analysis and the continued exchange of cyber threat information. The STIX suite of specifications [b-STIX2.0] is maintained under the responsibility of the Organization for the Advancement of Structured Information Standards (OASIS).