Early Warning Identity Threat and Mitigation System

Aditya Tyagi

Abstract


While many organizations share threat intelligence, there is still a lack of actionable data for organizations to proactively and effectively respond to emerging identity threats to mitigate a wide range of crimes. There currently exists no solution for organizations to access current trends and intelligence to understand emerging threats and how to appropriately respond to them.  This research project delivers I-WARN to help bridge that gap. Using a wide range of open-source information, I-WARN gathers, analyzes, and reports on threats related to the theft, fraud, and abuse of Personally Identifiable Information (PII). I-WARN then maps those threats to the MITRE ATT&CK -- a framework that helps understand lateral movement of an attack --  to offer mitigation and risk reduction tactics. I-WARN aims to deliver actionable intelligence, offering early warning into threat behaviors, and mitigation responses.  This paper discusses the technical details of I-WARN, non-exhaustive  current solutions for threat intelligence sharing, and future work.

Full Text:

PDF


DOI: http://dx.doi.org/10.14279/tuj.eceasst.80.1146

DOI (PDF): http://dx.doi.org/10.14279/tuj.eceasst.80.1146.1115

Hosted By Universitätsbibliothek TU Berlin.