A Model for Automated Cybersecurity Threat Remediation and Sharing

Regano L.;
2023-01-01

Abstract

This paper presents an approach to the automatic remediation of threats reported by Cyber Threat Intelligence. Remediation strategies, named Recipes, are expressed in a close-to-natural language for easy validation. Thanks to the developed models, they are interpreted, contextualized, and then translated into CACAO Security playbooks, a standard format ready for automatic enforcement, without human intervention. The presented approach also allows sharing of remediation procedures on threat-sharing platforms (e.g. MISP) which improves the overall security posture. The effectiveness of the approach has been tested in the context of two EC-funded projects.
2023
Inglese
2023 IEEE 9th International Conference on Network Softwarization: Boosting Future Networks through Advanced Softwarization, NetSoft 2023 - Proceedings
979-8-3503-9980-6
Institute of Electrical and Electronics Engineers Inc.
345 E 47TH ST, NEW YORK, NY 10017 USA
492
497
6
WOS:001032763600083
2-s2.0-85166486533
9th IEEE International Conference on Network Softwarization, NetSoft 2023
Esperti anonimi
2023
esp
scientifica
Automated Risk Remediation
Network Functions Virtualization
Threat Sharing
no
4 Contributo in Atti di Convegno (Proceeding)::4.1 Contributo in Atti di convegno
Settanni, F.; Regano, L.; Basile, C.; Lioy, A.
273
4
4.1 Contributo in Atti di convegno
none
info:eu-repo/semantics/conferencePaper
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Questionario e social

Condividi su:
Impostazioni cookie