News

March 24, 2022
Published by Claudia Rauch on March 24, 2022

Events with OCA participation in April, May and June

OCA will participate in several event both in the US and Europe throughout the next couple of months. In April, the OCA project Kestrel will be on the agenda at the eSummit “Threat Hunting & Offensive Security: Staying proactive, productive and protected” by SC Media. The event takes place on 12-13 April and is free to attend for OASIS members. […]
Do you like it?
Read more
January 7, 2022
Published by Anshul Garg, RoseAnn Guttierrez and Dee Schur on January 7, 2022

Open Cybersecurity Alliance: Solving the security interoperability challenge

The open-source community is looking to solve one of the biggest security challenges organizations face today: ensuring their tools can integrate with each other seamlessly.
Do you like it?
Read more
November 2, 2021
Published by Xiaokui Shu on November 2, 2021

Setting Up The Open Hunting Stack in Hybrid Cloud With Kestrel and SysFlow

How to set up the open hunting stack as presented at Black Hat Europe 2021 Arsenal.
Do you like it?
Read more
October 30, 2021
Published by Dennis Moreau on October 30, 2021

Zero Trust Working Group forms at Open Cyber Security Alliance

The seemingly endless stream of supply chain exploitation and ransomware disruptions have made it painfully clear that malware is already inside the perimeter, and has been there – undetected – for some time. With mounting pressure to address this issue, a significant number of regulatory and standards efforts have begun to consider Zero Trust as part of the answer. With […]
Do you like it?
Read more
October 29, 2021
Published by Anshul Garg on October 29, 2021

XDR: A Blessing for SOC Teams, or Another Fad?

The security industry has evolved over the years to combat new and emerging cyber threats, and as we evolved, new products were launched to help security teams. Some of these products have been great breakthroughs – driven by the venture capital and innovation flowing to the security industry – but a lot of them have been a fad as they […]
Do you like it?
Read more
October 18, 2021
Published by RoseAnn Guttierrez on October 18, 2021

Federated Search

Visibility is an ongoing problem for security operations. Throughout an investigation, many tools are utilized to gather and collect the context needed to make informed decisions. That context is critical to advise security teams on what actions to take and what potential threats require further research. Gathering information across multiple tools and disparate data sources takes time, and time is […]
Do you like it?
Read more
October 12, 2021
Published by Adam Montville on October 12, 2021

Enabling the Cooperative Ecosystem

The Center for Internet Security (CIS) has a mission to improve the actual practice of cyber defense, and we do this, in part, by ensuring that our best practice recommendations (in the form of CIS Benchmarks recommendations and CIS Controls Safeguards) track clear and transparent measures of security value for our users. Most recently, we’ve embarked on the journey of mapping our […]
Do you like it?
Read more
October 5, 2021
Published by Matthew Gardiner on October 5, 2021

The Increased Need for Security Integration Standards

My experience with security standards began many years ago in 2002 during my time at Netegrity and later the Kantara Initiative. There, I was involved with the creation, standardization, and popularization of the OASIS standard, SAML, and federated SSO more broadly. The problem that we focused on solving — how to transition an authenticated user session (and the associated level of trust) from one […]
Do you like it?
Read more
Prev page
1234
Next page