Threat intelligence platform for the energy sector

Wróbel, Michał R.

doi:10.1002/spe.2705

Cited by 8 publications

(12 citation statements)

References 106 publications

(160 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Leszczyna et al [11], indicate that there is a need to link a fine grained situational awareness to information sharing data. They propose different topologies, ranging from a decentralized peer to peer, to a confederated topology as seen in Figs.…”

Section: Paper Organizationmentioning

confidence: 99%

“…Fast sharing is important then however it is not enough [7,8]. The grained situational awareness, as a way to understand and make decisions at strategic and tactical levels, needs to be linked to the information sharing initiatives [9,11]. New knowledge must be applied to reduce our risk exposure along the time.…”

Section: The Problem: Open Challenges and Limitations Of Existing Solutionsmentioning

confidence: 99%

“…No one will share relevant information to anyone, without it. Trust must exist between peers, between users and the sharing infrastructure [6,11], and also between the user and the platform administrator. The majority of platforms are closed source [10], which is reducing trust.…”

Section: The Problem: Open Challenges and Limitations Of Existing Solutionsmentioning

confidence: 99%

“…All instances or platforms are managed by a centralized or unique entity at the end. We understand that authors in [11], are really talking about a peer-to-peer interaction between different user's instances, instead of a pure decentralized platform. Suggested platforms by authors are not decentralized, at least in a pure way.…”

Section: A Pure Decentralized Infrastructure Based On Blockchainmentioning

confidence: 99%

“…10 -Integration environment: A remote and public Ethereum blockchain by using one of the most used test blockchain networks named Ropsten. 11 The main-net (Production environment) is equivalent to Ropsten with regard to the consensus and behavior, on the other hand it has more nodes but it also needs real ether. We then decided that using Ropsten was enough to demonstrate the benefits of our work, by using the main-net, the benefits will be higher for end users as there are more nodes to provide better and faster confirmations.…”

Section: Clientmentioning

confidence: 99%

See 4 more Smart Citations

Cybersecurity threat intelligence knowledge exchange based on blockchain

2019

View full text Add to dashboard Cite

Although cyber threat intelligence (CTI) exchange is a theoretically useful technique for improving security of a society, the potential participants are often reluctant to share their CTI and prefer to consume only, at least in voluntary based approaches. Such behavior destroys the idea of information exchange. On the other hand, governments are forcing specific entities and operators to report them specific incidents depending on their impact, otherwise there could be sanctions to those operators which are not reporting them on time. Obligations and sanctions are usually discouraging participants to share information voluntarily which will just share and report what is strictly required. We propose a paradigm shift of cybersecurity information exchange by introducing a new way to encourage all participants involved, at all levels, to share relevant information dynamically. It will also contribute to the support and deployment of Dynamic Risk Management frameworks to keep risks under an acceptance level along the time. Participants will have new and specific incentives to share, invest and consume threat intelligence and risk intelligence information depending on their different roles (producers, consumers, investors, donors and owner). Our proposal leverages from standards like Structured Threat Information Exchange, as well as W3C semantic web standards to enable a workspace of knowledge related to behavioral threat intelligence patterning to characterize tactics, techniques and procedures. At the same time, we propose an Ethereum Blockchain Smart contract Marketplace to better incentivize the sharing of that knowledge between all parties involved as well as creating a standard CTI token as a digital asset with a promising value in the market. Simulations and an experimentation were performed to demonstrate its benefits and incentives, but also its potential limits with regard to storage and cost of transactions.

show abstract

Section: Paper Organizationmentioning

confidence: 99%