cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
SOLVED

Threat Intelligence. How much of these in 'Preview' connectors are expected to change?

jjsantanna
Brass Contributor

‎Apr 17 2020 05:59 AM - last edited on ‎Dec 23 2021 04:51 AM by

‎Apr 17 2020 05:59 AM - last edited on ‎Dec 23 2021 04:51 AM by

Threat Intelligence. How much of these in 'Preview' connectors are expected to change?

I'm leading a CSSP using Sentinel as the SIEM for our clients. We would like to know how much of the "Threat intelligence - TAXII (Preview)"  and the "Threat Intelligence Platforms (Preview)" connectors are expected change. We want to deploy it in a couple of clients BUT they are reluctant because of the 'Preview' label attached to it. Is there anyone that I can talk to understand developments of those connectors? We don't want to deploy dozens of use cases and then everything crashes out of sudden. How advisable is to deploy those connectors in production? Thanks in advance for your answer.

Labels:
703 Views
0 Likes
1 Reply
Reply
1 Reply
best response confirmed by jjsantanna (Brass Contributor)
Ofer_Shezaf

‎Apr 19 2020 01:14 PM

‎Apr 19 2020 01:14 PM

Solution

Re: Threat Intelligence. How much of these in 'Preview' connectors are expected to change?

@jjsantanna :

 

@Jason Wescott provided the followingn guidance on another thread: 

 

We intend to bring both of these to GA this year. Be assured that the schema will not be breaking. We may add properties, but will not be deprecating any properties or changing enums so any code you write against the API today will continue to work as we move to GA. We are also supporting the existing /beta endpoint at production level of support as we are with the Threat Intelligence - Platforms data connector in Azure Sentinel.

0 Likes
Reply
1 best response

Accepted Solutions
best response confirmed by jjsantanna (Brass Contributor)
Ofer_Shezaf

‎Apr 19 2020 01:14 PM

‎Apr 19 2020 01:14 PM

Solution

Re: Threat Intelligence. How much of these in 'Preview' connectors are expected to change?

@jjsantanna :

 

@Jason Wescott provided the followingn guidance on another thread: 

 

We intend to bring both of these to GA this year. Be assured that the schema will not be breaking. We may add properties, but will not be deprecating any properties or changing enums so any code you write against the API today will continue to work as we move to GA. We are also supporting the existing /beta endpoint at production level of support as we are with the Threat Intelligence - Platforms data connector in Azure Sentinel.

View solution in original post

0 Likes
Reply