Ç¥ÁØÈ­ Âü¿©¾È³»

TTAÀÇ Ç¥ÁØÇöȲ

Ȩ > Ç¥ÁØÈ­ °³¿ä > TTAÀÇ Ç¥ÁØÇöȲ

Ç¥ÁعøÈ£ TTAE.OT-12.0022 ±¸Ç¥ÁعøÈ£
Á¦°³Á¤ÀÏ 2021-12-08 ÃÑÆäÀÌÁö 101
ÇѱÛÇ¥Áظí ÀÎÅÚ¸®Àü½º Á¤º¸ÀÇ ½Å·Ú ¹× ÀÚµ¿È­µÈ ±³È¯(TAXII) ¹öÀü 2.1
¿µ¹®Ç¥Áظí Trusted Automated Exchange of Intelligence Information (TAXII) Version 2.1
Çѱ۳»¿ë¿ä¾à ÀÌ Ç¥ÁØÀº CTI Á¤º¸¸¦ ±³È¯Çϴµ¥ »ç¿ëµÇ´Â ÀÀ¿ë °èÃþ ÇÁ·ÎÅäÄÝÀÎ TAXII 2.1ÀÇ ÇÙ½É °³³äµé(µ¥ÀÌÅÍ Çü½Ä, ÇÁ·ÎÅäÄÝ ±¸Á¶Ã¼, Åë½Åä³Î, »ç¿ëÀÚÁöÁ¤ µî)°ú Á¤º¸±³È¯ ¹æ½ÄÀ» Á¤ÀÇÇÑ´Ù. TAXII 2.1Àº STIX 2.0¿¡ Ç¥½ÃµÈ »çÀ̹ö À§Çù ÀÎÅÚ¸®Àü½º(CTI)ÀÇ ±³È¯À» Áö¿øÇϵµ·Ï ¼³°èµÇ¾úÀ¸¸ç, HTTPS¸¦ ÅëÇØ CTI¸¦ ±³È¯ÇÑ´Ù. ƯÈ÷, »ç¾çÀÇ ÀϺΠ±â´ÉÀº STIX 2.0°ú ÀÏÄ¡ÇÏ°Ô µÇ¾î ÀÖ´Ù. ¶ÇÇÑ, TAXII API ±¸Çö¹æ½Ä°ú ´Ù¾çÇÑ Á¤º¸ ±³È¯ ü°è¿¡ ´ëÇÏ¿© ¼³¸íÇÏ°í ÀÖ´Ù.
¿µ¹®³»¿ë¿ä¾à The standard defines the core concepts (data format, protocol structure, communication channel, user designation, etc.) and information exchange method of TAXII 2.1, an application layer protocol used to exchange CTI information. TAXII 2.1 is designed to support the exchange of Cyber Threat Intelligence (CTI) as indicated in STIX 2.0, and exchanges CTI via HTTPS. In particular, some features of the specification are intended to be consistent with STIX 2.0. In addition, it describes how to implement the TAXII API and various information exchange systems.
±¹Á¦Ç¥ÁØ
°ü·ÃÆÄÀÏ TTAE.OT-12.0022.pdf TTAE.OT-12.0022.pdf            

ÀÌÀü
º¹ÇÕ ÀÓº£µðµå ½Ã½ºÅÛ ³»ÀÇ ÀüÀÚÀåÄ¡ °£ µ¥ÀÌÅÍ ±³È¯ ÇÁ·Î±×·¡¹Ö ÀÎÅÍÆäÀ̽º ±â´É ¸í¼¼
´ÙÀ½
½Ç½Ã°£ »çÀ̹ö-¹°¸® ½Ã½ºÅÛ(CPS) ÀÀ¿ëÀ» À§ÇÑ µ¥ÀÌÅͺй輭ºñ½º ¿ä±¸»çÇ×