OSINT in the Context of Cyber-Security

Tabatabaei, Fahimeh; Wells, Douglas

doi:10.1007/978-3-319-47671-1_14

Cited by 21 publications

(21 citation statements)

References 53 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Curation is an essential element for finding the most valuable information by efficiently using a limited "time resource" in the Big Data era. Data curation is provided for the goals of data search, data quality assurance, value addition, reuse, and preservation over time, which includes the creators/recorders and the selection and evaluation of record repositories [16]. In the past, the curation process was carried out using simple information collection.…”

Section: Osint General Requirements and Security Threatsmentioning

confidence: 99%

“…If anyone accesses and modifies data in an open space, the reliability of data may degrade. In addition, users may accept and spread incorrect information because of the tempered data, laying a cornerstone for cybercrimes like fake news [16]. erefore, a guarantee of data integrity is an essential requirement in the OSINT process.…”

Section: Osint General Requirements and Security Threatsmentioning

confidence: 99%

See 1 more Smart Citation

Current Status and Security Trend of OSINT

Hwang

Lee

Kim

et al. 2022

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

Recently, users have used open-source intelligence (OSINT) to gather and obtain information regarding the data of interest. The advantage of using data gathered by OSINT is that security threats arising in cyberspace can be addressed. However, if a user uses data collected by OSINT for malicious purposes, information regarding the target of an attack can be gathered, which may lead to various cybercrimes, such as hacking, malware, and a denial-of-service attack. Therefore, from a cybersecurity point of view, it is important to positively use the data gathered by OSINT in a positive manner. If exploited in a negative manner, it is important to prepare countermeasures that can minimize the damage caused by cybercrimes. In this paper, the current status and security trends of OSINT will be explained. Specifically, we present security threats and cybercrimes that may occur if data gathered by OSINT are exploited by malicious users. Furthermore, to solve this problem, we propose security requirements that can be applied to the OSINT environment. The proposed security requirements are necessary for securely gathering and storing data in the OSINT environment and for securely accessing and using the data collected by OSINT. The goal of the proposed security requirements is to minimize the damage when cybercrimes occur in the OSINT environment.

show abstract

Section: Osint General Requirements and Security Threatsmentioning

confidence: 99%

Section: Osint General Requirements and Security Threatsmentioning

confidence: 99%

Current Status and Security Trend of OSINT

Hwang

Lee

Kim

et al. 2022

Wireless Communications and Mobile Computing

View full text Add to dashboard Cite

show abstract

“…Data collection, aggregation and analysis are techniques already exploited in the security field for a long time, with Open Source Intelligence (OSINT) techniques [23] as a representative example, where data from public sources, is aggregated to generate insights and detect attacks. Network traffic related information is essential to leverage advanced machine learning techniques in the cybersecurity area [24], where the quality in the data collected and how it is aggregated impacts in the performance of the detection.…”

Section: Applying Data Aggregation To 5g Securitymentioning

confidence: 99%

Model-based Approach to Multi-domain Monitoring Data Aggregation

Pastor

López

Ordoñez-Lucena

et al. 2021

JICTS

View full text Add to dashboard Cite

The essential propellant for any closed-loop management mechanism is data related to the managed entity. While this is a general evidence, it becomes even more true when dealing with advanced closed-loop systems like the ones supported by Artificial Intelligence (AI), as they require a trustworthy, up-to-date and steady flow of state data to be applicable. Modern network infrastructures provide a vast amount of disparate data sources, especially in the multi-domain scenarios considered by the ETSI Industry Specification Group (ISG) Zero Touch Network and Service Management (ZSM) framework, and proper mechanisms for data aggregation, pre-processing and normalization are required to make possible AI-enabled closed-loop management. So far, solutions proposed for these data aggregation tasks have been specific to concrete data sources and consumers, following ad-hoc approaches unsuitable to address the vast heterogeneity of data sources and potential data consumers. This paper presents a model-based approach to a data aggregator framework, relying on standardized data models and telemetry protocols, and integrated with an open-source network orchestration stack to support their incorporation within network service lifecycles.

show abstract

“…OSINT is useful throughout many phases of cyberattacks, but it is a primary tool used for reconnaissance, one of the first stages of an attack. Contrary to information technology (IT) systems, the application of OSINT is not restricted to specific data sources [8]. Therefore, OSINT can provide an abundance of information on a wide range of subjects that are synthesized to launch attacks.…”

Section: Open Source Intelligence (Osint) Usementioning

confidence: 99%

“…Specifically, in targeted attack models, OSINT is a vital component of the reconnaissance stage to gather as much intelligence as possible on the chosen target [4]. The OSINT process encompasses data collection, data enrichment, data analysis, and dissemination [8]. During analysis, the raw data is used to create a profile of the target and establish general trajectories to initiate an intrusion [4].…”

Section: Open Source Intelligence (Osint) Usementioning

confidence: 99%