Abstract
|
Collecting and processing Open Source Inte … Collecting and processing Open Source Intelligence(OSINT) data is becoming a fundamental approach for obtainingcybersecurity threat information and awareness. Different typesof useful information and Indicators of Compromise (IoCs) areobtained from OSINT sources, which keep security analystsupdated about new and possible threats against the IT in-frastructures they protect. However, skimming through variousnews feeds is a time consuming process and a source of allkinds of information (sometimes unuseful and not related tothe monitored infrastructure) for any security analyst. Basedon these shortcomings, we propose a Context-Aware OSINTPlatform as a tool for enhancing visualization and informationsharing capabilities in security data analytic platforms. The toolis not only able to collect OSINT data, but also to process itand filter only the relevant parts, thus enriching the attributesof the detected data, and consequently, decreasing the amount ofinformation and the time required to analyze and act upo time required to analyze and act upo
|
Author
|
Gustavo Gonzalez-Granadillo +
, Mario Faiella +
, Ibéria Medeiros +
, Rui Azevedo +
, Susana Gonzalez-Zarzosa +
|
Booktitle
|
In Proceedings of the Workshop on Data-Centric on Security and Dependability (DCDS, with DSN 2019) +
|
Key
|
DCDS19 Enhancing +
|
Month
|
jun +
|
NumPubDate
|
2,019.06 +
|
Project
|
Project:DiSIEM +
|
ResearchLine
|
Fault and Intrusion Tolerance in Open Distributed Systems (FIT) +
|
Title
|
Enhancing Information Sharing and Visualization Capabilities in Security Data Analytic Platforms +
|
Type
|
inproceedings +
|
Year
|
2019 +
|
Has improper value forThis property is a special property in this wiki.
|
Url +
|
Categories |
Publication +
|
Modification dateThis property is a special property in this wiki.
|
18 September 2019 00:25:18 +
|