Distributed Security Framework for Reliable Threat Intelligence Sharing
Joint Authors
Joosen, Wouter
Preuveneers, Davy
Bernal Bernabe, Jorge
Skarmeta, Antonio
Source
Security and Communication Networks
Issue
Vol. 2020, Issue 2020 (31 Dec. 2020), pp.1-15, 15 p.
Publisher
Hindawi Publishing Corporation
Publication Date
2020-08-01
Country of Publication
Egypt
No. of Pages
15
Main Subjects
Information Technology and Computer Science
Abstract EN
Computer security incident response teams typically rely on threat intelligence platforms for information about sightings of cyber threat events and indicators of compromise.
Other security building blocks, such as Network Intrusion Detection Systems, can leverage the information to prevent malicious adversaries from spreading malware across critical infrastructures.
The effectiveness of threat intelligence platforms heavily depends on the willingness to share among organizations and the responsible use of sensitive information that may potentially harm the reputation of the reporting organization.
The challenge that we address is the lack of trust in the source providing the threat intelligence and the information itself.
We enhance our security framework TATIS—offering fine-grained protection for threat intelligence platform APIs—with distributed ledger capabilities to enable reliable and trustworthy threat intelligence sharing with the ability to audit the provenance of threat intelligence.
We have implemented and evaluated the feasibility of our distributed framework on top of the Malware Information Sharing Platform (MISP) solution, and we evaluate the performance impact using real-world open-source threat intelligence feeds.
American Psychological Association (APA)
Preuveneers, Davy& Joosen, Wouter& Bernal Bernabe, Jorge& Skarmeta, Antonio. 2020. Distributed Security Framework for Reliable Threat Intelligence Sharing. Security and Communication Networks،Vol. 2020, no. 2020, pp.1-15.
https://search.emarefa.net/detail/BIM-1208646
Modern Language Association (MLA)
Preuveneers, Davy…[et al.]. Distributed Security Framework for Reliable Threat Intelligence Sharing. Security and Communication Networks No. 2020 (2020), pp.1-15.
https://search.emarefa.net/detail/BIM-1208646
American Medical Association (AMA)
Preuveneers, Davy& Joosen, Wouter& Bernal Bernabe, Jorge& Skarmeta, Antonio. Distributed Security Framework for Reliable Threat Intelligence Sharing. Security and Communication Networks. 2020. Vol. 2020, no. 2020, pp.1-15.
https://search.emarefa.net/detail/BIM-1208646
Data Type
Journal Articles
Language
English
Notes
Includes bibliographical references
Record ID
BIM-1208646