In threat intelligence communications, what set of specifications is for exchanging cyberthreat information between organizations?
Answers
Answer:
Explanation:
Structured Threat Information Expression™ and Trusted Automated eXchange of Indicator Information™ (STIX-TAXII) are community-supported specifications designed to enable automated information sharing for cybersecurity situational awareness, real-time network defense, and complex threat analysis
Explanation:
- Trusted automated exchange of indicator information (TAXII)
- Structured threat information expression (STIX)
- Automated indicator sharing (AIS)
- Common vulnerabilities and exposures (CVE)
Explanation: -
The two common threat intelligence-sharing standards are as follows:
Structured Threat Information Expression (STIX) – This is a set of specifications for exchanging cyberthreat information between organizations. The Cyber Observable Expression (CybOX) standard has been incorporated into STIX.
Trusted Automated Exchange of Indicator Information (TAXII) – This is the specification for an application layer protocol that allows the communication of CTI over HTTPS. TAXII is designed to support STIX.