chg: [attack] updated

x.17-eu-attack-community/content.tex

@@ -19,6 +19,17 @@
 \end{frame}
 
 
+\begin{frame}
+   \frametitle{Origins and Evolution}
+   \begin{itemize}
+       \item Seeing the success of the ATT\&CK framework in MISP gave rise to a host of matrix-based models:
+       \begin{itemize}
+           \item Inflation? We don’t think so. There are {\bf different models} because there are many {\bf different use cases to be represented}.
+           \item We found this to be good as long as those models are maintained.
+       \end{itemize}
+   \end{itemize}
+\end{frame}
+
 \begin{frame}
 	\frametitle{MISP galaxies over time}
 	\begin{center}
@@ -26,6 +37,24 @@
 	\end{center}
 \end{frame}
 
+\begin{frame}
+        \frametitle{What Leads to Starting New Frameworks?}
+        \begin{itemize}
+	\item New frameworks try to {\bf fill gaps}.
+            \item New ideas in different areas/domains.
+            \item Small vs. large initiatives.
+	    \item {\bf Collaboration is not always easy}.
+                \begin{itemize}
+                    \item Small contributors vs. large organizations.
+                    \item Absence of guidance to contribute.
+                    \item Closed models.
+                \end{itemize}
+            \item Research \& publication vs. practical use.
+            \item Need for timely new data in a continuously evolving threat landscape.
+        \end{itemize}
+\end{frame}
+
+
 
 \begin{frame}
   \frametitle{Get in touch if you have any questions}