![[img]](https://epub.uni-regensburg.de/style/images/fileicons/application_pdf.png) | Angenommene Version Download ( PDF | 2MB) |
A Comparative Study on Cyber Threat Intelligence: The Security Incident Response Perspective
Schlette, Daniel
, Caselli, Marco und Pernul, Günther
(2021)
A Comparative Study on Cyber Threat Intelligence: The Security Incident Response Perspective.
IEEE Communications Surveys & Tutorials 23 (4), S. 2525-2556.
Veröffentlichungsdatum dieses Volltextes: 08 Aug 2022 07:12
Artikel
DOI zum Zitieren dieses Dokuments: 10.5283/epub.52721
Zusammenfassung
Cyber Threat Intelligence (CTI) is threat information intended for security purposes. However, use for incident response demands standardization. This study examines the broader security incident response perspective. Introducing 18 core concepts, we assist efforts to establish and assess current standardization approaches. We further provide the reader with a detailed analysis of 6 incident ...
Cyber Threat Intelligence (CTI) is threat information intended for security purposes. However, use for incident response demands standardization. This study examines the broader security incident response perspective. Introducing 18 core concepts, we assist efforts to establish and assess current standardization approaches. We further provide the reader with a detailed analysis of 6 incident response formats. While we synthesize structural elements, we point to characteristics and show format deficiencies. Also, we describe how core concepts can be used to determine a suitable format for a given use case. Our surveys' findings indicate a consistent focus on incident response actions within all formats. Besides, playbooks are used to represent procedures. Different use cases suggest that organizations can leverage and combine multiple formats. Finally, we discuss open research challenges to fully realize incident response potentials.
Alternative Links zum Volltext
Beteiligte Einrichtungen
Details
| Dokumentenart | Artikel | ||||
| Titel eines Journals oder einer Zeitschrift | IEEE Communications Surveys & Tutorials | ||||
| Verlag: | IEEE-INST ELECTRICAL ELECTRONICS ENGINEERS INC | ||||
|---|---|---|---|---|---|
| Ort der Veröffentlichung: | PISCATAWAY | ||||
| Band: | 23 | ||||
| Nummer des Zeitschriftenheftes oder des Kapitels: | 4 | ||||
| Seitenbereich: | S. 2525-2556 | ||||
| Datum | 4 Oktober 2021 | ||||
| Institutionen | Wirtschaftswissenschaften > Institut für Wirtschaftsinformatik > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul) Informatik und Data Science > Fachbereich Wirtschaftsinformatik > Lehrstuhl für Wirtschaftsinformatik I - Informationssysteme (Prof. Dr. Günther Pernul) | ||||
| Identifikationsnummer |
| ||||
| Stichwörter / Keywords | INFORMATION; Cyber threat intelligence; incident response; standardization; playbook format | ||||
| Dewey-Dezimal-Klassifikation | 000 Informatik, Informationswissenschaft, allgemeine Werke > 004 Informatik | ||||
| Status | Veröffentlicht | ||||
| Begutachtet | Ja, diese Version wurde begutachtet | ||||
| An der Universität Regensburg entstanden | Ja | ||||
| URN der UB Regensburg | urn:nbn:de:bvb:355-epub-527216 | ||||
| Dokumenten-ID | 52721 |
Bibliographische Daten exportieren
Nur für Besitzer und Autoren: Kontrollseite des Eintrags
Downloadstatistik
Downloadstatistik