A Novel Trust Taxonomy for Shared Cyber Threat Intelligence

Cyber threat intelligence sharing has become a focal point for many organizations to improve resilience against cyberattacks. The objective lies in sharing relevant information achieved through automating as many processes as possible without losing control or compromising security. The intelligence...

Full description

Saved in:
Bibliographic Details
Published in:Security and communication networks 2018-01, Vol.2018 (2018), p.1-11
Main Authors: Abdallah, Ali E., Mahbub, Khaled, Palomar, Esther, Wagner, Thomas D.
Format: Article
Language:English
Subjects:
Collaboration
Crowdsourcing
Cybersecurity
Grey literature
Information sharing
Intelligence gathering
Internet of Things
Malware
Platforms
Stakeholders
Supply chains
Taxonomy
Threat evaluation
Trust
Citations: Items that this one cites
Items that cite this one
Online Access:Get full text
Tags: Add Tag
No Tags, Be the first to tag this record!
Description
Summary:Cyber threat intelligence sharing has become a focal point for many organizations to improve resilience against cyberattacks. The objective lies in sharing relevant information achieved through automating as many processes as possible without losing control or compromising security. The intelligence may be crowdsourced from decentralized stakeholders to collect and enrich existing information. Trust is an attribute of actionable cyber threat intelligence that has to be established between stakeholders. Sharing information about vulnerabilities requires a high level of trust because of the sensitive information. Some threat intelligence platforms/providers support trust establishment through internal vetting processes; others rely on stakeholders to manually build up trust. The latter may reduce the amount of intelligence sources. This work presents a novel trust taxonomy to establish a trusted threat sharing environment. 30 popular threat intelligence platforms/providers were analyzed and compared regarding trust functionalities. Trust taxonomies were analyzed and compared. Illustrative case studies were developed and analyzed applying our trust taxonomy.
ISSN:1939-0114
1939-0122
DOI:10.1155/2018/9634507