Open source collaboration spearheaded by AWS and Splunk aims at identifying and mitigating cyber assaults
In a groundbreaking move, a coalition of 18 companies has introduced the Open Cybersecurity Schema Framework (OCSF) at the Black Hat USA conference in Las Vegas. The project, initially established by Amazon Web Services and Splunk, aims to address the fragmented tools used by cybersecurity professionals, improving detection and protection against cyberattacks.
The OCSF is not exclusive to any particular industry or sector and adheres to commonly adopted security standards. It is designed to facilitate better integration and coordination among proprietary security tools, simplifying data classification in a vendor-neutral framework. The goal is to help security teams spend less time normalizing data and more time on defense.
The coalition includes contributions from Cloudflare, CrowdStrike, DTEX, IBM Security, IronNet, JupiterOne, Okta, Palo Alto Networks, Rapid7, Salesforce, Securonix, Sumo Logic, Tanium, Trend Micro, and Zscaler. However, Microsoft and Google, the two largest cloud providers, are not initially listed among supporters of the OCSF. While the specific reasons for their absence are not explicitly stated, it may relate to their own established, proprietary security frameworks and competitive positioning in the cloud security market.
The OCSF is not mentioned as being a replacement for existing security measures or tools, but rather as a means to improve their integration and coordination. It is important to note that the OCSF is not a solution to all cybersecurity issues, but a step towards streamlining the complex landscape of cybersecurity tools.
The OCSF builds upon Symantec's Integrated Cyber Defense Exchange Schema, further emphasizing its commitment to adhering to established security standards. The open-source effort can be applied in any environment, making it a valuable resource for businesses and organisations worldwide.
The OCSF is open to contributions and available for use. As more companies join the initiative, the potential for a more unified and effective cybersecurity landscape becomes increasingly promising. The OCSF aims to help improve the detection and protection against cyberattacks, ultimately contributing to a safer digital world.
