|
|
|
|
Status Report
CybOX Version 2.0 is a major version of the CybOX Language that can be utilized for practical operational use and integration into other standards efforts. Version 2.0 includes the following updates: significant changes to the CybOX Object model, easing implementation and extensibility; moved many usages of enumerations and strings to controlled vocabularies with CybOX-provided defaults as well as extension mechanisms; created PDF File Object, Custom Object, Link Object, and Socket Object; and refined the expression of Observable patterns through new pattern conditions and associated attributes. View the complete Release Notes.
|
|
|
CybOX™ International in scope and free for public use, the Cyber Observable eXpression (CybOX) is a standardized schema for the specification, capture, characterization and communication of events or stateful properties that are observable in the operational domain. A wide variety of high-level cyber security use cases rely on such information including: event management/logging, malware characterization, intrusion detection, incident response/management, attack pattern characterization, etc. CybOX provides a common mechanism (structure and content) for addressing cyber observables across and among this full range of use cases improving consistency, efficiency, interoperability and overall situational awareness.
|
|
|
|
|
