Standardizing Cyber Threat Intelligence Information with the Structured Threat Information eXpression (STIX™)

January 2012
Topics: Safeguard and Secure Cyberspace
Download PDF (593.16 KB)

It is becoming increasingly necessary for organizations with a cyber threat intelligence capability to share intelligence information with partners and peers. A key component for any such information-sharing capability is standardized, structured representations of cyber threat information. The Structured Threat Information eXpression (STIX™) is an effort to define and develop a language to represent structured threat information. The STIX language is meant to convey the full range of cyber threat information and strives to be fully expressive, flexible, extensible, automatable, and as human-readable as possible. Though relatively new and still evolving, it is actively being adopted or considered for adoption by a wide range of cyber threat-related organizations and communities around the world.

Publications

Publication Search