CTI STIX Subcommittee
Developing the STIX 2 language
Christian Studer, Christian.Studer@circl.lu, Chair
Emily Ratliff, emily.ratliff@ibm.com, Chair
STIX
Structured Threat Information Expression (STIX™) is a language and serialization format used to exchange cyber threat intelligence (CTI). STIX enables organizations to share CTI with one another in a consistent and machine readable manner, allowing security communities to better understand what computer-based attacks they are most likely to see and to anticipate and/or respond to those attacks faster and more effectively. STIX is designed to improve many different capabilities, such as collaborative threat analysis, automated threat exchange, automated detection and response, and more.
Statement of Purpose - STIX SC
This STIX SC is responsible for the development of the STIX language.
All interested parties are welcome to participate in evolving STIX as part of the STIX SC under the main OASIS Cyber Treat Intelligence (CTI) Technical Committee.
List of Deliverables
- STIX 2.1
- Other non-normative work products to increase adoption and improve the ease of use of the specification, such as best practices and implementor's guides
Links
- CTI TC Cover Page
- Issue Tracker
- JSON Schemas
- Subcommittee Mirror List
- cti-stix-publicmirror: a read-only public mirror of the CTI STIX Subcommittee discussion list. Anyone may subscribe to this list by sending an email subscription request (a blank message) to cti-stix-publicmirror-subscribe@lists.oasis-open.org
Providing Feedback: OASIS welcomes feedback on its technical activities from potential users, developers, and others to better assure the interoperability and quality of OASIS work.