Bitte benutzen Sie diese Kennung, um auf die Ressource zu verweisen:
https://doi.org/10.21256/zhaw-30376| Publikationstyp: | Konferenz: Paper |
| Art der Begutachtung: | Peer review (Publikation) |
| Titel: | FeedMeter : evaluating the quality of community-driven threat intelligence |
| Autor/-in: | Rüedlinger, Andreas Klauser, Rebecca Lamprakis, Pavlos Happe, Markus Tellenbach, Bernhard Veyisoglu, Onur Trammell, Ariane |
| et. al: | No |
| DOI: | 10.5220/0012357600003648 10.21256/zhaw-30376 |
| Tagungsband: | Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP |
| Seite(n): | 54 |
| Seiten bis: | 66 |
| Angaben zur Konferenz: | 10th International Conference on Information Systems Security and Privacy (ICISSP), Rome, Italy, 26-28 February 2024 |
| Erscheinungsdatum: | 2024 |
| Verlag / Hrsg. Institution: | SciTePress |
| ISBN: | 978-989-758-683-5 |
| Sprache: | Englisch |
| Schlagwörter: | Open source intelligence (OSINT); Cyber threat intelligence (CTI); Threat feed |
| Fachgebiet (DDC): | 005: Computerprogrammierung, Programme und Daten |
| Zusammenfassung: | A sound understanding of the adversary in the form of cyber threat intelligence (CTI) is key to successful cyber defense. Various sources of CTI exist, however there is no state-of-the-art method to approximate feed quality in an automated and continuous way. In addition, finding, combining and maintaining relevant feeds is very laborious and impedes taking advantage of the full potential of existing feeds. We propose FeedMeter, a platform that collects, normalizes, and aggregates threat intelligence feeds and continuously monitors them using eight descriptive metrics that approximate the feed quality. The platform aims to reduce the workload of duplicated manual processing and maintenance tasks and shares valuable insights about threat intelligence feeds. Our evaluation of a FeedMeter prototype with more than 150 OSINT sources, conducted over four years, shows that the platform has a real benefit for the community and that the metrics are promising approximations of source quality. A comparison with a prevalent commercial threat intelligence feed further strengthens this finding. |
| URI: | https://digitalcollection.zhaw.ch/handle/11475/30376 |
| Volltext Version: | Publizierte Version |
| Lizenz (gemäss Verlagsvertrag): | CC BY-NC-ND 4.0: Namensnennung - Nicht kommerziell - Keine Bearbeitungen 4.0 International |
| Departement: | School of Engineering |
| Organisationseinheit: | Institut für Informatik (InIT) |
| Publiziert im Rahmen des ZHAW-Projekts: | HostDetective – Next Generation Active and Passive Web Server Rating System |
| Enthalten in den Sammlungen: | Publikationen School of Engineering |
Dateien zu dieser Ressource:
| Datei | Beschreibung | Größe | Format | |
|---|---|---|---|---|
| 2024_Ruedlinger-etal_FeedMeter-community-driven-threat-intelligence.pdf | 558.09 kB | Adobe PDF |  Öffnen/Anzeigen |
Zur Langanzeige
Rüedlinger, A., Klauser, R., Lamprakis, P., Happe, M., Tellenbach, B., Veyisoglu, O., & Trammell, A. (2024). FeedMeter : evaluating the quality of community-driven threat intelligence [Conference paper]. Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP, 54–66. https://doi.org/10.5220/0012357600003648
Rüedlinger, A. et al. (2024) ‘FeedMeter : evaluating the quality of community-driven threat intelligence’, in Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP. SciTePress, pp. 54–66. Available at: https://doi.org/10.5220/0012357600003648.
A. Rüedlinger et al., “FeedMeter : evaluating the quality of community-driven threat intelligence,” in Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP, 2024, pp. 54–66. doi: 10.5220/0012357600003648.
RÜEDLINGER, Andreas, Rebecca KLAUSER, Pavlos LAMPRAKIS, Markus HAPPE, Bernhard TELLENBACH, Onur VEYISOGLU und Ariane TRAMMELL, 2024. FeedMeter : evaluating the quality of community-driven threat intelligence. In: Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP. Conference paper. SciTePress. 2024. S. 54–66. ISBN 978-989-758-683-5
Rüedlinger, Andreas, Rebecca Klauser, Pavlos Lamprakis, Markus Happe, Bernhard Tellenbach, Onur Veyisoglu, and Ariane Trammell. 2024. “FeedMeter : Evaluating the Quality of Community-Driven Threat Intelligence.” Conference paper. In Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP, 54–66. SciTePress. https://doi.org/10.5220/0012357600003648.
Rüedlinger, Andreas, et al. “FeedMeter : Evaluating the Quality of Community-Driven Threat Intelligence.” Proceedings of the 10th International Conference on Information Systems Security and Privacy - ICISSP, SciTePress, 2024, pp. 54–66, https://doi.org/10.5220/0012357600003648.
Alle Ressourcen in diesem Repository sind urheberrechtlich geschützt, soweit nicht anderweitig angezeigt.