OpenC2 in the News

August 30, 2021

OASIS Announces Public Review of the MQTT Transfer Specification, v1.0.
OpenC2 transfer specifications describe how to use standard protocols to transfer OpenC2 messages. The MQTT Transfer Specification describes how to use MQTT v5.0 in support of OpenC2 messaging.

August 30, 2021

OASIS Publishes CSD01 of the OpenC2 Language Specification, v1.1.
The Language Specification is the foundation document defining the OpenC2 language. Version 1.1 of the Language Specification will address changes identified since the November 2019 publication of v1.0, CSD02.

August 24, 2021

OASIS Publishes CS01 of the JSON Abstract Data Notation (JADN) Specification, v1.0.
JSON Abstract Data Notation (JADN) is a UML-based information modeling language that defines data structure independently of data format. Information models are used to define and generate physical data models, validate information instances, and enable lossless translation across data formats. A JADN specification consists of two parts: type definitions that comprise the information model, and serialization rules that define how information instances are represented as data.

August 17, 2021

OASIS Publishes CSD01 of the Actuator Profile for Packet Filtering, v1.0.
The Packet Filtering AP will combine stateless and stateful packet filtering under a single AP, and make provisions for use in cloud environments.

June 24, 2021

Future Challenges and Directions for Security Automation and Orchestration (video).
Neal Ziring, Technical Director, National Security Agency delivers the keynote address for the Borderless Cyber 2021, in which he discusses the importance of OpenC2 in evolving cybersecurity challenges.

June 24, 2021

STIX, OpenC2, CACAO Playbooks: Cybersecurity Standards Working Together To Tackle Recent String of High-Profile Hacks (video).
Michael Rosa (NSA) explores OpenC2 applications (at approximately the twenty-six minute mark) in a Borderless Cyber panel on how standards could help with the recent attacks.

June 22, 2021

A successful OpenC2 Plugfest was held in conjunction with Borderless Cyber 2021.

February 10, 2021

Sharing & Exchanging SBOMs (paper).
The NTIA Software Transparency Multistakeholder Group is producing documentation on how improve software supply chain, particularly on the value om Software Bill of Materials (SBOM). The "Sharing & Exchanging SBOMs" paper includes OpenC2 as one of the mechanisms.

December 8, 2020

Demonstrating OpenC2 and SOAR (video)
IACD experiment using OpenC2 with a Swimlane orchestrator and Symantec ICDx to respond to malicious software download.

December 8, 2020

"Cybersecurity Automation" (video - click on word "English")
was presented at the ITU Kaleidoscope Academic Conference, including openC2's role in cybersecurity automation

October 28, 2020

Cyber Security Automation Virtual Plugfest / Hackathon
Information about the October 28, 2020 Plugfest / Hackathon, a mashup of SBOM / OpenC2 / SCAPv2 / IACD / CACAO / OCA / MUD / DBOM virtual Proof-of-Concept(PoC) / plugfest / hackathon.

October 23, 2020

SBOM PoC / OpenC2 Plugfest / Hackathon.
A LinkedIn post by Dan Johnson.

August 18, 2020

A nonproprietary language for the command and control of cyber defenses – OpenC2
An academic paper by Vasileios Mavroeidis.

July 29, 2020

OpenC2 Orchestration vs the Cyber Kill Chain.
A blog post on Medium by Erich Izdepski.

March 06, 2020

Making IoT safer with BEAM OTP
A presentation to Code BEAM SF 2020 by Duncan Sparrell (video).

May 27, 2020

EclecticIQ Joins Forces with Endpoint Solution Provider PolyLogyx
A press release on

Feb 5, 2020

Through the First OpenC2 Plugfest - Towards Standardization
A LinkedIn article by Vasileios Mavroeidis

Jan 27, 2020

Twenty-eight organizations meet across two days to test interoperability and implement the standard at the inaugural OpenC2 PlugFest
Information about the January 27-28, 2020 OpenC2 Plugfest / Hackathon sponsored by Dreamport and hosted by UMBC Training.

December 12, 2019

Open Command and Control (OpenC2) Language Specification v1.0 from OpenC2 TC approved as a Committee Specification
OASIS announcement of the publication of the 24 November 2019 CS02 version of the OpenC2 Language Specification.

December 04, 2019

ITU Kaleidoscope
Conference proceedings for December 2019 ITU Kaleidoscope (large PDF), includes paper on Cyber-Safety in Healthcare IoT by Duncan Sparrell

November 24, 2019

Open Command and Control (OpenC2) Language Specification Version 1.0 (CS02)
The HTML version of the OpenC2 Language Specification, CS02.

October 08, 2019

Improving IOT Safety using standards to improve IOT Security
A presentation by Duncan Sparrell at Borderless Cyber in Washington, DC (conference program entry).

October 08, 2019

Guidebook Session

September 03, 2019

3 Promising Technologies Making an Impact on Cybersecurity
A commentary article on DARKReading by Jon Oltsik.

August 07, 2019

A New Window Onto an OpenC2 World
A report (PDF) from about the publication of three initial OpenC2 Committee Specifications.

August 05, 2019

Three Committee Specifications approved by Open Command and Control (OpenC2) TC
The official OASIS publication announcement for the three inital OpenC2 Committee Specifications (CS01 versions).

July 11, 2019

Specification for Transfer of OpenC2 Messages via HTTPS Version 1.0 (CS01)
The HTML version of the HTTPS Transfer Specification, CS01.

May 01, 2019

5 threat detection and response technologies are coming together
A Cybersecurity Snippets article by Jon Oltsik at CSO Online.

Apr 02, 2019

OpenC2 can accelerate security operations, automation, and orchestration
A Cybersecurity Snippets article by Jon Oltsik at CSO Online.

December 18, 2018

Security operations activities to watch in 2019
A Cybersecurity Snippets article by Jon Oltsik at CSO Online.

November 12, 2018

Busting Cybersecurity Silos
An article by Sridhar Muppidi at

October 24, 2018

Duncan Sparrell interview with Ed Amoroso of TAG Cyber
Duncan Sparrell, Chief Cyber Curmudgeon at S-Fractal Consulting, chats about his long career at AT&T, current projects, and trends in cyber security (YouTube video).

September 06, 2018

IoTsm "Response at Cyberspeed to Attack" Proceedings of the International Conference on Industrial Internet of Things and Smart Manufacturing

March 15, 2018

Let it Be Hacked - Code Beam SF 2018
Presentation by Duncan Sparrell at Code Beam SF 2018 (video).

November 18, 2017

Cybersecurity, Erlang, & Opensource Combine in OpenC2

October 19, 2017

Responding to Cyber Attacks at Machine Speed.
Presentation by Duncan Sparrell at Rochester Security Summit 2017 (Prezi).

September 05, 2017

International Community Comes Together at OASIS to Advance OpenC2 Standard for Automated Defense Against Cyber-Attacks
OASIS press release about the work of the OpenC2 Technical Committee.

June 14, 2017

NSA's new open language for cyber-defenses will aid interoperability
Article about OpenC2 and the formation of the OASIS OpenC2 TC by Shaun Waterman on

June 7, 2017

Formation meeting for OASIS OpenC2 Technical Committee.
Public link to meeting minutes for the formation meeting.

April 10, 2017

OpenC2 Forum Transitions to OASIS OpenC2 TC
OASIS Call For Participation in the newly-forming OpenC2 Technical Committee.

March 23, 2017

Responding to Cyber Attack at Machine Speed - Duncan Sparrell
Presentation by Duncan Sparrell at Erlang & Elixir Factory SF 2017 (YouTube video).


OpenC2 Forum founded to create OpenC2 language