Ç¥ÁØÈ­ Âü¿©¾È³»

TTAÀÇ Ç¥ÁØÇöȲ

Ȩ > Ç¥ÁØÈ­ °³¿ä > TTAÀÇ Ç¥ÁØÇöȲ

Ç¥ÁعøÈ£ [ÆóÁö] TTAI.OT-12.0020-part2 ±¸Ç¥ÁعøÈ£
Á¦°³Á¤ÀÏ 2016-12-27 ÃÑÆäÀÌÁö 70
ÇѱÛÇ¥ÁØ¸í ±¸Á¶È­µÈ À§Çù Á¤º¸ Ç¥Çö ±Ô°Ý(STIX) Á¦2ºÎ: °øÅë
¿µ¹®Ç¥Áظí STIX(Structured Threat Information eXpression) Part 2: Common
Çѱ۳»¿ë¿ä¾à STIXÀÇ ±âº» ü°è´Â »çÀ̹ö À§ÇùÁ¤º¸ÀÇ ¸ðµ¨À» ¸¸µé°í »çÀ̹öÀ§Çù Á¤º¸ÀÇ ºÐ¼®°ú °øÀ¯¸¦ °¡´ÉÇÏ°Ô ÇÒ ¸ñÀûÀ¸·Î ¾ÆÈ© °¡Áö ÇÙ½É ±¸¼º(core construct)°ú ÀÌµé °£ÀÇ °ü°è¸¦ Á¤ÀÇÇÏ°í ÀÖ´Ù. º» ±Ô°Ý ¹®¼­(specification document)´Â °øÅë µ¥ÀÌÅÍ ¸ðµ¨(Common data model)À» Á¤ÀÇÇÏ°í Àִµ¥, ÀÌ´Â ÇÙ½É ±¸¼º¿ä¼Ò¿¡ ÀÇÇØ È®ÀåµÇ°Å³ª, ¿µÇâÀ» ¹ÌÄ¡´Â ±â¹Ý Ŭ·¡½º, °ü°èÁöÇâ Ŭ·¡½º, ÄÜÅÙÃ÷ ÅëÇÕ Å¬·¡½º, ¾îÈÖ°ü·Ã Ŭ·¡½º, ų üÀΰü·Ã Ŭ·¡½º, ±×¸®°í ÇÙ½É ±¸¼º¿¡ ÀÇÇØ °øÀ¯µÇ´Â ´Ù¸¥ Ŭ·¡½ºµéÀ» Á¤ÀÇÇÑ´Ù.
¿µ¹®³»¿ë¿ä¾à The Structured Threat Information Expression (STIX) framework defines nine core constructs and the relationships between them for the purposes of modeling cyber threat information and enabling cyber threat information analysis and sharing. The standard defines the Common data model, which defines base classes that are extended or leveraged by the core components, relationship-oriented classes, content aggregation classes, vocabulary-related classes, kill chain-related classes, and other classes shared by the core constructs.
±¹Á¦Ç¥ÁØ
°ü·ÃÆÄÀÏ TTAI.OT-12.0020-part2.pdf

ÀÌÀü
µðÁöÅÐ »çÀÌ´ÏÁö ±â¹Ý Àç³­°æº¸ ¸Þ½ÃÁö ÀüÆÄ Ã¼°è ¹× Àç»ý Áöħ
´ÙÀ½
¹ßÇâ ÀåÄ¡¿Í ÄÜÅÙÃ÷ »óÈ£ ¿¬µ¿ ÂüÁ¶¸ðµ¨ - Á¦ 4ºÎ : ¹ßÇâ ÀåÄ¡ ¼³°è ¿ä±¸ »çÇ×