Volume 12, Number 22, December 2022

A Cyber Threat Intelligence Management Platform for Industrial Environments

  Authors

Alexandros Papanikolaou¹, Aggelos Alevizopoulos¹, Christos Ilioudis², Konstantinos Demertzis², Konstantinos Rantos², ¹Innovative Secure Technologies P.C., Greece, ²International Hellenic University, Greece

  Abstract

Developing intelligent, interoperable Cyber Threat Information (CTI) sharing technologies can help build strong defences against modern cyber threats. CTIs allow the community to share information about cybercriminals' threats and vulnerabilities and countermeasures to defend themselves or detect malicious activity. A crucial need for success is that the data connected to cyber risks be understandable, organized, and of good quality. The receiving parties may grasp its content and utilize it effectively. This article describes an innovative cyber threat intelligence management platform (CTIMP) for industrial environments, one of the Cyber-pi project's significant elements. The suggested architecture, in particular, uses cyber knowledge from trusted public sources and integrates it with relevant information from the organization's supervised infrastructure in an entirely interoperable and intelligent way. When combined with an advanced visualization mechanism and user interface, the services mentioned above provide administrators with the situational awareness they require while also allowing for extended cooperation, intelligent selection of advanced coping strategies, and a set of automated selfhealing rules for dealing with threats.

  Keywords

Cyber Threat Intelligent, Cyber Threat Information, Information Sharing, Industrial Environment, Cybersecurity.