• English
  • Deutsch
  • Log In
    Password Login
    Research Outputs
    Fundings & Projects
    Researchers
    Institutes
    Statistics
Repository logo
Fraunhofer-Gesellschaft
  1. Home
  2. Fraunhofer-Gesellschaft
  3. Artikel
  4. On Collaboration and Automation in the Context of Threat Detection and Response with Privacy-Preserving Features
 
  • Details
  • Full
Options
February 14, 2025
Journal Article
Title

On Collaboration and Automation in the Context of Threat Detection and Response with Privacy-Preserving Features

Abstract
Organizations and their security operation centers often struggle to detect and respond effectively to an extensive quantity of ever-evolving cyberattacks. While collaboration, such as threat intelligence sharing between security teams, and response automation are often discussed in the cybersecurity community, issues like data sensitivity and confidence in detection may hinder their adoption. This work investigates the potentials and challenges of collaboration and automation to enhance incident response processes. We propose a reference architecture for data sharing in threat detection and response, aiming to boost collaborative and automated efforts across organizations while also considering privacy-preserving features. To address these challenges and potentials, we discuss how such a framework could enhance current response processes within and between organizations, validated with results in local attack detection, incident response, and data sharing.
Author(s)
Nitz, Lasse  orcid-logo
Fraunhofer-Institut für Angewandte Informationstechnik FIT  
Akbari Gurabi, Mehdi  orcid-logo
Fraunhofer-Institut für Angewandte Informationstechnik FIT  
Cermak, Milan  
Masaryk University Brno  
Zadnik, Martin  
Karpuk, David  
WithSecure
Drichel, Arthur  
RWTH Aachen University  
Schäfer, Sebastian
RWTH Aachen University  
Holmes, Benedikt  
RWTH Aachen University  
Mandal, Avikarsha  
Fraunhofer-Institut für Angewandte Informationstechnik FIT  
Journal
Digital Threats: Research and Practice  
Project(s)
Sharing and Automation for Privacy Preserving Attack Neutralization  
Funder
European Union  
Open Access
DOI
10.1145/3707651
Language
English
Fraunhofer-Institut für Angewandte Informationstechnik FIT  
Keyword(s)
  • Cybersecurity

  • Collaborative detection and response

  • Incident response automation

  • Information sharing

  • Privacy

  • Cookie settings
  • Imprint
  • Privacy policy
  • Api
  • Contact
© 2024