Analysis of Threat Intelligence Information Exchange via the STIX Standard

Oliver Krauss, Konstantin Papesh

Publikation: Beitrag in Buch/Bericht/TagungsbandKonferenzbeitragBegutachtung

1 Zitat (Scopus)

Abstract

Threat Information exchange is a highly relevant topic in today's environment of increasing data breaches, hacks and scams. Standardized formats for exchanging such information exist, but if and how they are used by an active community is determinant for gaining information from such provided information. We provide an in depth analysis of the current state of the Structured Threat Information Expression (STIX) standard, consisting of 5 different active threat information providers. Based on an analysis of 480,867 threat information objects, we find that the STIX standard is not used to its full capabilities, and lacks usefulness due to the quality and up-to-dateness of the information. We give suggestions for future improvements of standards based threat information exchange, such as more adherence to the core standard, and fostering an active community.

OriginalspracheEnglisch
TitelInternational Conference on Electrical, Computer, Communications and Mechatronics Engineering, ICECCME 2022
Herausgeber (Verlag)Institute of Electrical and Electronics Engineers Inc.
ISBN (elektronisch)9781665470957
DOIs
PublikationsstatusVeröffentlicht - 2022
Veranstaltung2022 International Conference on Electrical, Computer, Communications and Mechatronics Engineering, ICECCME 2022 - Male, Malediven
Dauer: 16 Nov. 202218 Nov. 2022

Publikationsreihe

NameInternational Conference on Electrical, Computer, Communications and Mechatronics Engineering, ICECCME 2022

Konferenz

Konferenz2022 International Conference on Electrical, Computer, Communications and Mechatronics Engineering, ICECCME 2022
Land/GebietMalediven
OrtMale
Zeitraum16.11.202218.11.2022

Fingerprint

Untersuchen Sie die Forschungsthemen von „Analysis of Threat Intelligence Information Exchange via the STIX Standard“. Zusammen bilden sie einen einzigartigen Fingerprint.

Zitieren