Hisham Ali H.Ali@napier.ac.uk
Research Student
Privacy-preserving and Trusted Threat Intelligence Sharing using Distributed Ledgers
Ali, Hashim; Papadopoulos, Pavlos; Ahmad, Jawad; Pit, Nikolaos; Jaroucheh, Zakwan; Buchanan, William J.
Authors
Dr Pavlos Papadopoulos P.Papadopoulos@napier.ac.uk
Lecturer
Dr Jawad Ahmad J.Ahmad@napier.ac.uk
Lecturer
Dr Nick Pitropakis N.Pitropakis@napier.ac.uk
Associate Professor
Dr Zakwan Jaroucheh Z.Jaroucheh@napier.ac.uk
Lecturer
Prof Bill Buchanan B.Buchanan@napier.ac.uk
Professor
Abstract
Threat information sharing is considered as one of the proactive defensive approaches for enhancing the overall security of trusted partners. Trusted partner organizations can provide access to past and current cybersecurity threats for reducing the risk of a potential cyberattack—the requirements for threat information sharing range from simplistic sharing of documents to threat intelligence sharing. Therefore, the storage and sharing of highly sensitive threat information raises considerable concerns regarding constructing a secure, trusted threat information exchange infrastructure. Establishing a trusted ecosystem for threat sharing will promote the validity, security, anonymity, scalability, latency efficiency, and traceability of the stored information that protects it from unauthorized disclosure. This paper proposes a system that ensures the security principles mentioned above by utilizing a distributed ledger technology that provides secure decentralized operations through smart contracts and provides a privacy-preserving ecosystem for threat information storage and sharing regarding the MITRE ATT&CK framework.
Citation
Ali, H., Papadopoulos, P., Ahmad, J., Pit, N., Jaroucheh, Z., & Buchanan, W. J. (2022). Privacy-preserving and Trusted Threat Intelligence Sharing using Distributed Ledgers. In IEEE SINCONF: 14th International Conference on Security of Information and Networks. https://doi.org/10.1109/SIN54109.2021.9699366
| Conference Name | IEEE SINCONF: 14th International Conference on Security of Information and Networks |
|---|---|
| Conference Location | Edinburgh |
| Start Date | Dec 15, 2021 |
| End Date | Dec 17, 2021 |
| Acceptance Date | Dec 7, 2021 |
| Online Publication Date | Feb 10, 2022 |
| Publication Date | 2022 |
| Deposit Date | Dec 21, 2021 |
| Publicly Available Date | Feb 11, 2022 |
| Publisher | Institute of Electrical and Electronics Engineers |
| Book Title | IEEE SINCONF: 14th International Conference on Security of Information and Networks |
| DOI | https://doi.org/10.1109/SIN54109.2021.9699366 |
| Keywords | Threat Information Sharing, MITRE ATT&CK, Distributed Ledger Technology, InterPlanetary File System, Hyperledger Fabric, Decentralised Identities, Blockchain, Privacy-Preserving, Cyber Hunting |
| Public URL | http://researchrepository.napier.ac.uk/Output/2831490 |
Files
Privacy-preserving And Trusted Threat Intelligence Sharing Using Distributed Ledgers (accepted version)
(24.6 Mb)
PDF
You might also like
A Proposal of a New Chaotic Map for Application in the Image Encryption Domain
(2022)
Journal Article
Multi-Chaos-Based Lightweight Image Encryption-Compression for Secure Occupancy Monitoring
(2022)
Journal Article
A DNA Based Colour Image Encryption Scheme Using A Convolutional Autoencoder
(2022)
Journal Article