Secure exchange of cyber threat intelligence using TAXII and distributed ledger technologies - Application for electrical power and energy system

Maryam Pahlevan, Artemis Voulkidis, Terpsichori-Helen Velivassaki

    Research output: Chapter in Book/Report/Conference proceedingConference article in proceedingsScientificpeer-review

    2 Citations (Scopus)
    522 Downloads (Pure)

    Abstract

    The energy sector has been, in recent years, the target of sophisticated cyberattacks. Although the importance of collaborative cyber-security consciousness, expressed as extensive cyber threat intelligence sharing, is undoubted, the standardization of the means of exchanging cyber threat information efficiently and securely has been inadequately addressed and is mostly expressed by the emergence of the Trusted Automated eXchange of Indicator Information (TAXIITM) protocol which faces major deficiencies when it comes to data integrity assurance and suitability for event-driven architectures. This paper presents a novel approach enabling secure and real-time exchange of cyber threat information, by extending the technological capacity of the TAXII framework and addressing its deficiencies through the integration of Distributed Ledger Technologies (DLT) and a generalized publish-subscribe middleware. The applicability of the proposed solution has been validated in several use cases addressing the real needs of Electrical Power and Energy Systems.

    Original languageEnglish
    Title of host publicationProceedings of International Conference on Availability, Reliability and Security, ARES 2021
    PublisherACM
    Number of pages8
    ISBN (Electronic)978-1-4503-9051-4
    DOIs
    Publication statusPublished - 17 Aug 2021
    MoE publication typeA4 Conference publication
    EventInternational Conference on Availability, Reliability and Security - Vienna, Austria
    Duration: 17 Aug 202120 Aug 2021
    Conference number: 16

    Conference

    ConferenceInternational Conference on Availability, Reliability and Security
    Abbreviated titleARES
    Country/TerritoryAustria
    CityVienna
    Period17/08/202120/08/2021

    Keywords

    • Cyber Threat Intelligence
    • Distributed Ledger Technology
    • Energy Sector
    • Publish-Subscribe Middleware
    • TAXII Framework

    Fingerprint

    Dive into the research topics of 'Secure exchange of cyber threat intelligence using TAXII and distributed ledger technologies - Application for electrical power and energy system'. Together they form a unique fingerprint.

    Cite this