Title | ||
---|---|---|
Automated Cyber Threat Sensing and Responding: Integrating Threat Intelligence into Security-Policy-Controlled Systems |
Abstract | ||
---|---|---|
Cyber security management requires fast and cost efficient responses to threat alerts. Automation of cyber threat sensing and responding is one way to achieve immediate reactions to imminent threats. There are already tools for an extensive automation of threat sensing, e.g. threat intelligence sharing platforms. Methods, techniques and tools for reacting to menacing states and events, e.g. security-policy-controlled systems, have also been explored and published for some time. What is still missing, however, is the integration of these two approaches. This paper describes first steps towards an integration of threat intelligence sharing platforms and security-policy-controlled systems. We present a conceptual design for threat reaction strategies, security architectures and mechanisms and information representation requirements. We use two exemplary threat scenarios to demonstrate our proposals.
|
Year | DOI | Venue |
---|---|---|
2019 | 10.1145/3339252.3340509 | Proceedings of the 14th International Conference on Availability, Reliability and Security |
Keywords | Field | DocType |
Conceptual Integration Design, Cyber Threat Sensing and Responding, Security Automation, Security Policies, Threat Intelligence Sharing Platforms | Threat intelligence,Cyber threat,Computer science,Computer security,Security policy | Conference |
ISBN | Citations | PageRank |
978-1-4503-7164-3 | 0 | 0.34 |
References | Authors | |
0 | 4 |
Name | Order | Citations | PageRank |
---|---|---|---|
Peter Amthor | 1 | 13 | 3.24 |
Daniel Fischer | 2 | 0 | 0.68 |
Winfried E. Kühnhauser | 3 | 55 | 15.07 |
Dirk Stelzer | 4 | 152 | 18.46 |