Volume 12, Number 22, December 2022
A Cyber Threat Intelligence Management Platform for Industrial Environments
Authors
Alexandros Papanikolaou1, Aggelos Alevizopoulos1, Christos Ilioudis2, Konstantinos Demertzis2, Konstantinos Rantos2, 1Innovative Secure Technologies P.C., Greece, 2International Hellenic University, Greece
Abstract
Developing intelligent, interoperable Cyber Threat Information (CTI) sharing technologies can help build strong defences against modern cyber threats. CTIs allow the community to share information about cybercriminals' threats and vulnerabilities and countermeasures to defend themselves or detect malicious activity. A crucial need for success is that the data connected to cyber risks be understandable, organized, and of good quality. The receiving parties may grasp its content and utilize it effectively. This article describes an innovative cyber threat intelligence management platform (CTIMP) for industrial environments, one of the Cyber-pi project's significant elements. The suggested architecture, in particular, uses cyber knowledge from trusted public sources and integrates it with relevant information from the organization's supervised infrastructure in an entirely interoperable and intelligent way. When combined with an advanced visualization mechanism and user interface, the services mentioned above provide administrators with the situational awareness they require while also allowing for extended cooperation, intelligent selection of advanced coping strategies, and a set of automated selfhealing rules for dealing with threats.
Keywords
Cyber Threat Intelligent, Cyber Threat Information, Information Sharing, Industrial Environment, Cybersecurity.