In order to use Resilient in an MSSP environment, we would like to be able to classify the confidentiality of each artifact according to the Traffic Light Protocol, and use this classification to configure the relating functionalities of Resilient.
The classification should be used in integrations with Threat Information Platforms.
The classification should also affect how the system relates artifacts across incidents. E.g. Artifacts tagged as TLP:Red should only be related within the originating tenant while artifacts tagged as TLP:Amber may be related across multiple tenants.