OASIS Open: Committees

Call for consent of STIX(TM) v2.1 CS03 and TAXII(TM) v2.1 CS01 as OASIS Standards

Please make 2 selections below to indicate whether the listed CSs should become OASIS Standards.

Members of the OASIS Cyber Threat Intelligence (CTI) TC [1] approved advancing STIX v2.1 CS03 and TAXII v2.1 CS01 to the membership as candidates for OASIS Standard.

Structured Threat Information Expression (STIX) is a language and serialization format used to exchange cyber threat intelligence. STIX enables organizations and tools to share threat intelligence with one another in a way that improves many different capabilities, such as collaborative threat analysis, automated threat exchange, automated detection and response, and more. Note that Committee Specification 03 was produced to correct non-material changes discovered during the 60-day public review. This was done in accordance with the procedures outlined in section 2.8.2 of the TC Process (https://www.oasis-open.org/policies-guidelines/tc-process-2017-05-26/#OSpublicRev).

The TC received 11 Statements of Use from Accenture Security, Anomali, Avast Software s.r.o., CISA, DarkLight, Inc., EclecticIQ B.V., Fujitsu, IBM, New Context, SEKOIA, and Trend Micro [2].

TAXII is an application layer protocol for the communication of cyber threat information in a simple and scalable manner. it is specifically designed to support the exchange of CTI represented in STIX, but is not limited to STIX.

The TC received 10 Statements of Use from Avast Software s.r.o., Celerium, CISA, Cyware Labs, EclecticIQ B.V., FreeTAXII, Fujitsu, SEKOIA, and Trend Micro [3].

This is a call to the Organizational Members of OASIS to consent or object to this approval. You are welcome to register your consent explicitly on the ballot; however your consent is assumed unless you register an objection [4]. To register an objection, you must:

1. Indicate your objection on this ballot, and

2. Provide a reason for your objection and/or a proposed remedy to the TC.

You may provide the reason in the comment box or by email to the Technical Committee on its comment mailing list or, if you are a member of the TC, to the TC's mailing list [5]. If you provide your reason by email, please indicate in the subject line that this is in regard to the Call for Consent. Note that failing to provide a reason and/or remedy may result in an objection being deemed invalid.

URIs:

The prose specification document and related files are available here:

* STIX Version 2.1
Committee Specification 03
21 May 2021

Editable source (Authoritative):
https://docs.oasis-open.org/cti/stix/v2.1/cs03/stix-v2.1-cs03.docx

HTML:
https://docs.oasis-open.org/cti/stix/v2.1/cs03/stix-v2.1-cs03.html

PDF:
https://docs.oasis-open.org/cti/stix/v2.1/cs03/stix-v2.1-cs03.pdf

ZIP distribution file:
https://docs.oasis-open.org/cti/stix/v2.1/cs03/stix-v2.1-cs03.zip

* TAXII Version 2.1
Committee Specification 01
27 January 2020

Editable source (Authoritative):
https://docs.oasis-open.org/cti/taxii/v2.1/cs01/taxii-v2.1-cs01.docx

HTML:
https://docs.oasis-open.org/cti/taxii/v2.1/cs01/taxii-v2.1-cs01.html

PDF:
https://docs.oasis-open.org/cti/taxii/v2.1/cs01/taxii-v2.1-cs01.pdf

ZIP distribution file:
https://docs.oasis-open.org/cti/taxii/v2.1/cs01/taxii-v2.1-cs01.zip

Please contact OASIS TC Administration at tc-admin@lists.oasis-open.org with any questions you may have about this ballot.

--- Additional information ---

[1] OASIS Cyber Threat Intelligence (CTI) TC
https://www.oasis-open.org/committees/cti/

[2] STIX statements of use

- Accenture Security:
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202102/msg00006.html

- Anomali
https://lists.oasis-open.org/archives/cti/202103/msg00029.html

- Avast Software s.r.o.
https://lists.oasis-open.org/archives/cti/202103/msg00016.html

- CISA (Cybersecurity and Infrastructure Security Agency)
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202102/msg00022.html

- DarkLight, Inc
https://lists.oasis-open.org/archives/cti/202103/msg00015.html

- EclecticIQ B.V.
https://lists.oasis-open.org/archives/cti/202102/msg00027.html

- Fujitsu:
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202102/msg00005.html

- IBM
https://lists.oasis-open.org/archives/cti/202103/msg00036.html

- New Context:
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202101/msg00027.html

- SEKOIA
https://lists.oasis-open.org/archives/cti/202102/msg00012.html

- Trend Micro
https://lists.oasis-open.org/archives/cti/202102/msg00021.html

[3] TAXII Statements of Use

- Avast Software s.r.o.
https://lists.oasis-open.org/archives/cti/202104/msg00014.html

- Celerium:
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202007/msg00002.html

- CISA (Cybersecurity and Infrastructure Security Agency)
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202102/msg00022.html

- Cyware Labs:
https://www.oasis-open.org/apps/org/workgroup/cti/email/archives/202007/msg00033.html

- EclecticIQ B.V.
https://lists.oasis-open.org/archives/cti/202102/msg00027.html

- FreeTAXII
https://lists.oasis-open.org/archives/cti/202101/msg00028.html

- Fujitsu
https://lists.oasis-open.org/archives/cti/202102/msg00005.html

- SEKOIA
https://lists.oasis-open.org/archives/cti/202102/msg00012.html

- Trend Micro
https://lists.oasis-open.org/archives/cti/202102/msg00021.html

[4] https://www.oasis-open.org/policies-guidelines/tc-process-2017-05-26#OScallForConsent

[5] Comments may be submitted to the TC through the use of the OASIS TC Comment Facility as explained in the instructions located at https://www.oasis-open.org/committees/comments/index.php?wg_abbrev=cti

Comments submitted to the TC are publicly archived and can be viewed at https://lists.oasis-open.org/archives/cti-comment/

Members of the TC should send comments directly to cti@lists.oasis-open.org.

[ ]	STIX v2.1 CS03 - approve
[ ]	STIX v2.1 CS03 - object
[ ]	TAXII v2.1 CS01 - approve
[ ]	TAXII v2.1 CS01 - object

Opening:		Friday, 28 May 2021 @ 12:00 am UTC
Closing:		Thursday, 10 June 2021 @ 11:59 pm UTC
Group:		OASIS organizational voting

Ballot has closed.

Referenced Items
Name	Type	Date	Action
03624: Call for consent of STIX(TM) v2.1 CS03 and TAXII(TM) v2.1 CS01 as OASIS Standards (130K)	Document	2021-06-10	No Access

Voting Details

Voting Summary

Options with highest number of votes are bold

Option	# Votes	% of Total
STIX v2.1 CS03 - approve	13	50%
STIX v2.1 CS03 - object	0	0%
TAXII v2.1 CS01 - approve	13	50%
TAXII v2.1 CS01 - object	0	0%

Eligible companies who have voted:	13 of 173	8%
Eligible companies who have abstained:	0 of 173	0%
Eligible companies who have not voted:	160 of 173	92%

Voting Details

Voter	Company	Vote	Reference Document and/or Comment
Florian Skopik (Pri)	AIT Austrian Institute of Technology	--
Gerhard Heyer (Pri)	ASV	--
Maria Adamczyk (Pri)	AT&T	--
Robert Coderre (Pri)	Accenture	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
scott tester (Pri)	Acme Test Company	--
Vivek Kumar (Pri)	Adobe Systems	--
Abbie Barbir (Pri)	Aetna	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
John Heywood (Pri)	American University	--
Greg Fischer (Pri)	Anomali	--
Cameron Esfahani (Pri)	Apple	--
Will Rideout (Pri)	Arista Networks	--
Jim Price (Pri)	Arizona Supreme Court	--
David Harte (Pri)	Bank of America	--
Alvaro Sandoval (Pri)	Biblioteca del Congreso Nacional de Chile	--
Jim Tivy (Pri)	Bluestream	--
Trey Darley (Pri)	CCB/CERT.be	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve	It's been a mighty long road to get here and a mammoth undertaking by the CTI TC community, but at long last here we are! Thanks to everyone who chipped in to make this a reality!
Thorsten Behrens (Pri)	CIB labs GmbH	--
Alexandre Dulaunoy (Pri)	CIRCL	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
Arsalan Iqbal (Pri)	CTM360	--
Mary Wilson (Pri)	Carnegie Mellon University	--
Narendra Vad (Pri)	Cisco Systems	--
Morten Ollgaard (Pri)	ClearView Trade	--
Matthew Reed (Pri)	Coelition	--
Dawn Stevens (Pri)	Comtech Services, Inc.	--
Tim Hudson (Pri)	Cryptsoft Pty Ltd.	--
Jane Ginn (Pri)	Cyber Threat Intelligence Network, Inc. (C...	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
Anuj Goel (Pri)	Cyware Labs	--
Preston Werntz (Pri)	DHS Office of Cybersecurity and Communicat...	--
Ole Madsen (Pri)	Danish Business Authority	--
Timothy Casey (Alt)	DarkLight, Inc.	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
Gauthier Fanmuy (Pri)	Dassault Systemes	--
Judith Furlong (Pri)	Dell	--
Arno Schamber (Pri)	Deutsche Boerse AG	--
Sigbjorn Berntzen (Pri)	Directorate of Labour and Welfare Norway	--
Zaiming Shi (Pri)	EMQ Technologies Co., Ltd.	--
Michael Staudinger (Pri)	EUMETNET	--
Aukjan van Belkum (Alt)	EclecticIQ	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
Matt Wakefield (Pri)	Electric Power Research Institute (EPRI)	--
Mark Nixon (Pri)	Emerson Process Management	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
Thomas Sigdestad (Pri)	Enonic	--
Richard Hogue (Pri)	Environment Canada	--
Carolina Canales-Valenzuela (Pri)	Ericsson	--
Olivier Leboeuf (Pri)	European Parliament	--
Pavel Rychly (Pri)	Faculty of Informatics Masaryk University	--
Thomas Schmidt (Pri)	Federal Office for Information Security (B...	--
Dennis Weddig (Pri)	Federal Reserve Bank of Minneapolis	--
Antonis Gotsis (Pri)	Feron Technologies P.C.	--
Chris Ricard (Pri)	Financial Services Information Sharing and...	--
Charles White (Pri)	Fornetix	--
Daniel Mallmann (Pri)	Forschungszentrum Juelich GmbH	--
Makiko Shimamura (Pri)	Fujitsu Limited	--
Shirley-Ann Fiagome (Pri)	Ghana Parliament	--
Jeremy Allison (Pri)	Google Inc.	--
Paul Anderson (Pri)	GrammaTech, Inc.	--
George Knecht (Pri)	Green Filing, LLC	--
Bojan Simic (Pri)	HYPR CORP	--
Christoph Meinel (Pri)	Hasso Plattner Institute	--
Priya Mysore (Pri)	Healthwise	--
Christopher Hillier (Pri)	Hewlett Packard Enterprise (HPE)	--
Akihito Sawada (Pri)	Hitachi, Ltd.	--
Christian Goetz (Pri)	HiveMQ GmbH	--
Fang You (Pri)	Huawei Technologies Co., Ltd.	--
Jason Keirstead (Pri)	IBM	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
Sid Baccam (Pri)	IEM	--
Ashwini Jarral (Pri)	IJIS Institute	--
Eric Sirois (Pri)	IXIASOFT	--
Ryan Foley (Pri)	ImageSoft, Inc.	--
Michael Markowitz (Pri)	Information Security Corporation	--
Arvi Tavast (Pri)	Institute of the Estonian Language	--
Steve Olshansky (Pri)	Internet Society (ISOC)	--
Ken Klingenstein (Pri)	Internet2	--
Serge Huber (Pri)	Jahia Solutions Group SA	--
Damian Tamburri (Pri)	Jheronimus Academy of Data Science (JADS)	--
Thomas Smith (Pri)	Johns Hopkins University Applied Physics L...	--
Simon Krek (Pri)	Jozef Stefan Institute	--
Jorge Basto (Pri)	Judicial Council of Georgia	--
Camilla Boemann (Pri)	KDE e.V.	--
Beth Pumo (Pri)	Kaiser Permanente	--
Carlos Manjarez (Pri)	Legal Services Corporation	--
Milos Jakubicek (Pri)	Lexical Computing CZ s.r.o.	--
Jacques de Wit (Pri)	Logius	--
Jeremy Haas (Pri)	LookingGlass	--
Snorri Ogata (Pri)	Los Angeles Superior Court	--
Thomas Hardjono (Pri)	M.I.T.	--
Mario Velazquez (Pri)	MDreieck S.A. de C.V.	--
Joe Wheeler (Alt)	MTG Management Consultants, LLC.	--
Kent Landfield (Pri)	McAfee	--
Michael Angelo (Pri)	Micro Focus	--
Peggy Moloney (Pri)	Microsoft	--
Marc Boget (Pri)	Ministere de L'Interieur-France	--
Doraiswamy ('Raj') Rajagopal (Pri)	Mitre Corporation	--
Gary Crowe (Pri)	NAPPS	--
Takahiro Kakumaru (Pri)	NEC Corporation	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
Kevin Mangold (Pri)	NIST	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
Andrea Hardy (Pri)	NOAA/NWS	--
Jim Harris (Pri)	National Center for State Courts	--
Denise Anderson (Pri)	National Council of ISACs (NCI)	--
Mike Boyle (Pri)	National Security Agency	--
John McCrae (Pri)	National University of Ireland Galway	--
Tim Chevalier (Pri)	NetApp	--
Erin O'Reilly (Pri)	NetCracker	--
Daniel Riedel (Pri)	New Context Services, Inc.	--
Philip Weir (Pri)	New Zealand Government	--
Timo Perala (Pri)	Nokia	--
Paul Seay (Pri)	Northrop Grumman	--
Scott McGrath (Pri)	OASIS	--
Andre Fatton (Pri)	Octavo Labs	--
Scott Simmons (Pri)	Open Geospatial Consortium, Inc. (OGC)	--
Don Thibeau (Pri)	Open Identity Exchange	--
Rolf Bienert (Pri)	OpenADR Alliance, Inc.	--
Matti Moell (Pri)	OpenSynergy GmbH	--
Martin Chapman (Pri)	Oracle	--
Mark Joseph (Pri)	P6R, Inc	--
Yasuyuki Nishioka (Pri)	PSLX consortium	--
Chris Chiesa (Pri)	Pacific Disaster Center	--
Ryan Olson (Pri)	Palo Alto Networks	--
Peter Reynolds (Pri)	Polish Association of Translation Agencies...	--
Danilo Ardagna (Pri)	Politecnico di Milano-DEIB	--
Rob Hanna (Pri)	Precision Content Authoring Solutions Inc.	--
Stefano Calabrese (Pri)	Presidenza del Consiglio dei Ministri - Di...	--
Tomas Gustavsson (Pri)	PrimeKey Solutions AB	--
Mark Biamonte (Pri)	Progress Software	--
Maria Manuela Cruz (Pri)	Publications Office of the European Union	--
John Leiseboer (Pri)	QuintessenceLabs Pty Ltd.	--
Sam DeBord (Pri)	Real Estate Standards Organization (RESO)	--
Mark Little (Pri)	Red Hat	--
Kevin Brown (Pri)	RenderX, Inc.	--
Ralf Handl (Pri)	SAP SE	--
Frank Closset (Pri)	SDL	--
David Bizeul (Pri)	SEKOIA	--
Phu Nguyen (Pri)	SINTEF	--
Leif Johansson (Pri)	SUNET	--
Stephen Edwards (Pri)	Semper Fortis Solutions	--
Scott Hudson (Pri)	ServiceNow	--
Marquart FRANZ (Pri)	Siemens AG	--
Prasad Yendluri (Pri)	Software AG	--
David Charles (Pri)	Solace Systems	--
Pim van der Eijk (Pri)	Sonnenglanz Consulting	--
Joe Levy (Pri)	Sophos Ltd	--
Adam Wyner (Pri)	Swansea University	--
Kerstin Wiss-Holmdahl (Pri)	Swedish Association of Local Authorities & Regions	--
Martin Torngren (Pri)	Swedish Royal Institute of Technology	--
Denny Page (Pri)	TIBCO Software Inc.	--
Julie Wang (Pri)	TWNCERT	--
Olivier Dobberkau (Pri)	TYPO3 Association	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
Hyunsook Choi (Pri)	Telecommunications Technology Association ...	--
Florian Effenberger (Pri)	The Document Foundation	--
Jens Aabol (Pri)	The Norwegian Agency for Public and Financ...	--
Andrew Pendergast (Pri)	ThreatConnect, Inc.	--
Ryan Trost (Pri)	ThreatQuotient, Inc.	--
Mikkel Brun (Pri)	Tradeshift Network Ltd.	--
David Girard (Pri)	Trend Micro	STIX v2.1 CS03 - approve TAXII v2.1 CS01 - approve
David Lewis (Pri)	Trinity College Dublin (ADAPT)	--
Ori Eisen (Pri)	Trusona, Inc.	--
Philip Baughman (Pri)	Tyler Technologies, Inc.	--
Antonio Brogi (Pri)	UNIPI	--
Sherman Charles (Pri)	US Department of Defense (DoD)	--
Gheorghe Cosmin Silaghi (Pri)	Universitatea Babes-Bolyai	--
Monica Palmirani (Pri)	University of Bologna-CIRSFID	--
Reka Markovich (Pri)	University of Luxembourg	--
Toby Considine (Pri)	University of North Carolina at Chapel Hill	--
Vasileios Mavroeidis (Pri)	University of Oslo	--
Dieter Bong (Pri)	Utimaco IS GmbH	--
VMware Industry Standards Office (Pri)	VMware, Inc.	--
Carlos Evia (Pri)	Virginia Tech	--
David Dufour (Pri)	Webroot	--
Matt Vickers (Pri)	Xero	--
David Riddoch (Pri)	Xilinx, Inc	--
Michael Stahl (Pri)	allotropia software GmbH	--
Hamish Cameron (Pri)	nCipher	--
Danilo Beuche (Pri)	pure-systems GmbH	--
Duncan Sparrell (Pri)	sFractal Consulting LLC	--
Simon Johnson (Pri)	u-blox AG	--