OASIS Committee Categories: Security

Technical Committees:

Cyber Standards Council
The voice of the cybersecurity user community
OASIS Collaborative Automated Course of Action Operations (CACAO) for Cyber Security TC
Defining the standard for implementing course of action playbooks for cybersecurity operations.
OASIS Common Security Advisory Framework (CSAF) TC
Standardizing automated disclosure of cybersecurity vulnerability issues
OASIS Cyber Threat Intelligence (CTI) TC
Supporting automated information sharing for cybersecurity situational awareness, real-time network defense, and sophisticated threat analysis
OASIS Digital Signature Services eXtended (DSS-X) TC
Advancing digital signature services standards
OASIS Electronic Identity Credential Trust Elevation Methods (Trust Elevation) TC
Defining a set of standardized protocols to elevate trust in an electronic identity
OASIS eXtensible Access Control Markup Language (XACML) TC
OASIS StandardRepresenting and evaluating access control policies.
OASIS Key Management Interoperability Protocol (KMIP) TC
Advancing interoperability standards for enterprise encryption key management
OASIS Open Command and Control (OpenC2) TC
Creating a standardized language for the command and control of technologies that provide or support cyber defenses.
Enhancing PKCS #11 standard for cryptographic tokens controlling authentication information (personal identity, cryptographic keys, certificates, digital signatures, biometric data)
OASIS Privacy Management Reference Model (PMRM) TC
Providing a guideline for developing operational solutions to privacy issues
OASIS Security Algorithms and Methods (SAM) TC
Defining a well-documented collection of algorithms, mechanisms and methods, including test-vectors, that can be used in other Technical Committees.
OASIS Security Services (SAML) TC
OASIS StandardDefining and maintaining a standard, XML-based framework for creating and exchanging security information between online partners
OASIS Static Analysis Results Interchange Format (SARIF) TC
Defining a standard output format for static analysis tools