Automated Cyber Threat Sensing and Responding: Integrating Threat Intelligence into Security-Policy-Controlled Systems - Citegraph

Paper Info

Title
Automated Cyber Threat Sensing and Responding: Integrating Threat Intelligence into Security-Policy-Controlled Systems

Abstract
Cyber security management requires fast and cost efficient responses to threat alerts. Automation of cyber threat sensing and responding is one way to achieve immediate reactions to imminent threats. There are already tools for an extensive automation of threat sensing, e.g. threat intelligence sharing platforms. Methods, techniques and tools for reacting to menacing states and events, e.g. security-policy-controlled systems, have also been explored and published for some time. What is still missing, however, is the integration of these two approaches. This paper describes first steps towards an integration of threat intelligence sharing platforms and security-policy-controlled systems. We present a conceptual design for threat reaction strategies, security architectures and mechanisms and information representation requirements. We use two exemplary threat scenarios to demonstrate our proposals.

Year	DOI	Venue
2019	10.1145/3339252.3340509	Proceedings of the 14th International Conference on Availability, Reliability and Security
Keywords	Field	DocType
Conceptual Integration Design, Cyber Threat Sensing and Responding, Security Automation, Security Policies, Threat Intelligence Sharing Platforms	Threat intelligence,Cyber threat,Computer science,Computer security,Security policy	Conference
ISBN	Citations	PageRank
978-1-4503-7164-3	0	0.34
References	Authors
0	4

Authors (4 rows)

Cited by (0 rows)

References (0 rows)

Name	Order	Citations	PageRank
Peter Amthor	1	13	3.24
Daniel Fischer	2	0	0.68
Winfried E. Kühnhauser	3	55	15.07
Dirk Stelzer	4	152	18.46

1