Threat intelligence platform for the energy sector - Publikacja - MOST Wiedzy


Threat intelligence platform for the energy sector


In recent years, critical infrastructures and power systems in particular have been subjected to sophisticated cyberthreats, including targeted attacks and advanced persistent threats. A promising response to this challenging situation is building up enhanced threat intelligence that interlinks information sharing and fine-grained situation awareness. In this paper a framework which integrates all levels of threat intelligence i.e. strategic, tactical, operational and technical is presented. The platform implements the centralised model of information exchange with peer-to-peer interactions between partners as an option. Several supportive solutions were introduced, including anonymity mechanisms or data processing and correlation algorithms. A data model that enables communication of cyberincident information, both in natural language and machine-readable formats was defined. Similarly, security requirements for critical components were devised. A pilot implementation of the platform was developed and deployed in the operational environment, which enabled practical evaluation of the design. Also the security of the anonymity architecture was analysed.


  • 1


  • 1

    Web of Science

  • 1


Informacje szczegółowe

Publikacja w czasopiśmie
artykuł w czasopiśmie wyróżnionym w JCR
Opublikowano w:
SOFTWARE-PRACTICE & EXPERIENCE nr 49, strony 1225 - 1254,
ISSN: 0038-0644
Rok wydania:
Opis bibliograficzny:
Leszczyna R., Wróbel M.: Threat intelligence platform for the energy sector// SOFTWARE-PRACTICE & EXPERIENCE. -Vol. 49, iss. 8 (2019), s.1225-1254
Cyfrowy identyfikator dokumentu elektronicznego (otwiera się w nowej karcie) 10.1002/spe.2705
Politechnika Gdańska

wyświetlono 24 razy

Publikacje, które mogą cię zainteresować

Meta Tagi