Please use this identifier to cite or link to this item:

Towards an Evaluation Framework for Threat Intelligence Sharing Platforms

File Size Format  
0193.pdf 272.73 kB Adobe PDF View/Open

Item Summary

Title:Towards an Evaluation Framework for Threat Intelligence Sharing Platforms
Authors:Bauer, Sara
Fischer, Daniel
Sauerwein, Clemens
Latzel, Simon
Stelzer, Dirk
show 1 moreBreu, Ruth
show less
Keywords:Cybersecurity and Privacy in Government
evaluation framework
information security
security information sharing
threat intelligence sharing
show 1 morethreat intelligence sharing platform
show less
Date Issued:07 Jan 2020
Abstract:Threat intelligence sharing is an important countermeasure against the increasing number of security threats to which companies and governments are exposed. Its objective is the cross-organizational exchange of information about actual and potential threats. In recent years, a heterogeneous market of threat intelligence sharing platforms (TISPs) has emerged. These platforms are inter-organizational systems that support collaborative collection, aggregation, analysis and dissemination of threat-related information. Organizations that consider using TISPs are often faced with the challenge of selecting suitable platforms. To facilitate the evaluation of threat intelligence sharing platforms, we present a framework for analyzing and comparing relevant TISPs. Our framework provides a set of 25 functional and non-functional criteria that support potential users in selecting suitable platforms. We demonstrate the applicability of our evaluation framework by assessing three platforms: MISP, OTX and ThreatQ. We describe common features and differences between the three platforms.
Pages/Duration:10 pages
Rights:Attribution-NonCommercial-NoDerivatives 4.0 International
Appears in Collections: Cybersecurity and Privacy in Government

Please email if you need this content in ADA-compliant format.

This item is licensed under a Creative Commons License Creative Commons