-
Notifications
You must be signed in to change notification settings - Fork 134
/
machinetag.json
297 lines (297 loc) · 9.2 KB
/
machinetag.json
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
{
"namespace": "iep",
"description": "Forum of Incident Response and Security Teams (FIRST) Information Exchange Policy (IEP) framework",
"version": 2,
"predicates": [
{
"value": "commercial-use",
"expanded": "COMMERCIAL USE",
"description": "States whether Recipients are permitted to use information received in commercial products or services."
},
{
"value": "external-reference",
"expanded": "EXTERNAL REFERENCE",
"description": "This statement can be used to convey a description or reference to any applicable licenses, agreements, or conditions between the producer and receiver."
},
{
"value": "encrypt-in-transit",
"expanded": "ENCRYPT IN TRANSIT",
"description": "States whether the received information has to be encrypted when it is retransmitted by the recipient."
},
{
"value": "encrypt-at-rest",
"expanded": "ENCRYPT AT REST",
"description": "States whether the received information has to be encrypted by the Recipient when it is stored at rest."
},
{
"value": "permitted-actions",
"expanded": "PERMITTED ACTIONS",
"description": "States the permitted actions that Recipients can take upon information received."
},
{
"value": "affected-party-notifications",
"expanded": "AFFECTED PARTY NOTIFICATIONS",
"description": "Recipients are permitted notify affected third parties of a potential compromise or threat."
},
{
"value": "traffic-light-protocol",
"expanded": "TRAFFIC LIGHT PROTOCOL",
"description": "Recipients are permitted to redistribute the information received within the redistribution scope as defined by the enumerations."
},
{
"value": "provider-attribution",
"expanded": "PROVIDER ATTRIBUTION",
"description": "Recipients could be required to attribute or anonymize the Provider when redistributing the information received."
},
{
"value": "obfuscate-affected-parties",
"expanded": "OBFUSCATE AFFECTED PARTIES",
"description": "Recipients could be required to obfuscate or anonymize information that could be used to identify the victims before redistributing the information received."
},
{
"value": "unmodified-resale",
"expanded": "UNMODIFIED RESALE",
"description": "States whether the recipient MAY or MUST NOT resell the information received unmodified or in a semantically equivalent format."
},
{
"value": "start-date",
"expanded": "POLICY START DATE",
"description": "States the UTC date that the IEP is effective from."
},
{
"value": "end-date",
"expanded": "POLICY END DATE",
"description": "States the UTC date that the IEP is effective until."
},
{
"value": "reference",
"expanded": "POLICY REFERENCE",
"description": "This statement can be used to provide a URL reference to the specific IEP implementation."
},
{
"value": "name",
"expanded": "POLICY NAME",
"description": "This statement can be used to provide a name for an IEP implementation."
},
{
"value": "version",
"expanded": "POLICY VERSION",
"description": "States the version of the IEP framework that has been used."
},
{
"value": "id",
"expanded": "POLICY ID",
"description": "Provides a unique ID to identify a specific IEP implementation."
}
],
"values": [
{
"predicate": "commercial-use",
"entry": [
{
"value": "MAY",
"expanded": "Recipients MAY use this information in commercial products or services."
},
{
"value": "MUST NOT",
"expanded": "Recipients MUST NOT use this information in commercial products or services."
}
]
},
{
"predicate": "external-reference",
"entry": [
{
"value": "$text",
"expanded": "An external-reference value is required"
}
]
},
{
"predicate": "encrypt-in-transit",
"entry": [
{
"value": "MUST",
"expanded": "Recipients MUST encrypt the information received when it is retransmitted or redistributed."
},
{
"value": "MAY",
"expanded": "Recipients MAY encrypt the information received when it is retransmitted or redistributed."
}
]
},
{
"predicate": "encrypt-at-rest",
"entry": [
{
"value": "MUST",
"expanded": "Recipients MUST encrypt the information received when it is stored at rest."
},
{
"value": "MAY",
"expanded": "Recipients MAY encrypt the information received when it is stored at rest."
}
]
},
{
"predicate": "permitted-actions",
"entry": [
{
"value": "NONE",
"expanded": "Recipients MUST contact the Providers before acting upon the information received."
},
{
"value": "CONTACT FOR INSTRUCTION",
"expanded": "Recipients MUST contact the Providers before acting upon the information received."
},
{
"value": "INTERNALLY VISIBLE ACTIONS",
"expanded": "Recipients MAY conduct actions on the information received that are only visible on the Recipients internal networks and systems, and MUST NOT conduct actions that are visible outside of the Recipients networks and systems, or visible to third parties."
},
{
"value": "EXTERNALLY VISIBLE INDIRECT ACTIONS",
"expanded": "Recipients MAY conduct indirect, or passive, actions on the information received that are externally visible and MUST NOT conduct direct, or active, actions."
},
{
"value": "EXTERNALLY VISIBLE DIRECT ACTIONS",
"expanded": "Recipients MAY conduct direct, or active, actions on the information received that are externally visible."
}
]
},
{
"predicate": "affected-party-notifications",
"entry": [
{
"value": "MAY",
"expanded": "Recipients MAY notify affected parties of a potential compromise or threat."
},
{
"value": "MUST NOT",
"expanded": "Recipients MUST NOT notify affected parties of potential compromise or threat."
}
]
},
{
"predicate": "traffic-light-protocol",
"entry": [
{
"value": "RED",
"expanded": "Personal for identified recipients only."
},
{
"value": "AMBER",
"expanded": "Limited sharing on the basis of need-to-know."
},
{
"value": "GREEN",
"expanded": "Community wide sharing."
},
{
"value": "WHITE",
"expanded": "Unlimited sharing."
}
]
},
{
"predicate": "provider-attribution",
"entry": [
{
"value": "MAY",
"expanded": "Recipients MAY attribute the Provider when redistributing the information received."
},
{
"value": "MUST",
"expanded": "Recipients MUST attribute the Provider when redistributing the information received."
},
{
"value": "MUST NOT",
"expanded": "Recipients MUST NOT attribute the Provider when redistributing the information received."
}
]
},
{
"predicate": "obfuscate-affected-parties",
"entry": [
{
"value": "MAY",
"expanded": "Recipients MAY obfuscate information about the specific affected parties."
},
{
"value": "MUST",
"expanded": "Recipients MUST obfuscate information about the specific affected parties."
},
{
"value": "MUST NOT",
"expanded": "Recipients MUST NOT obfuscate information about the specific affected parties."
}
]
},
{
"predicate": "unmodified-resale",
"entry": [
{
"value": "MAY",
"expanded": "Recipients MAY resell the information received."
},
{
"value": "MUST NOT",
"expanded": "Recipients MUST NOT resell the information received unmodified or in a semantically equivalent format."
}
]
},
{
"predicate": "start-date",
"entry": [
{
"value": "$text",
"expanded": "A start-date value is required"
}
]
},
{
"predicate": "end-date",
"entry": [
{
"value": "$text",
"expanded": "An end-date value is required"
}
]
},
{
"predicate": "reference",
"entry": [
{
"value": "$text",
"expanded": "A reference value is required"
}
]
},
{
"predicate": "name",
"entry": [
{
"value": "$text",
"expanded": "A name value is required"
}
]
},
{
"predicate": "version",
"entry": [
{
"value": "$text",
"expanded": "A version value is required"
}
]
},
{
"predicate": "id",
"entry": [
{
"value": "$text",
"expanded": "An id value is required"
}
]
}
]
}