Publication: Using CTI Data to Understand Real World Cyberattacks
carlosiii.embargo.liftdate | 2025-03-13 | |
carlosiii.embargo.terms | 2025-03-13 | |
dc.affiliation.dpto | UC3M. Departamento de Ingeniería Telemática | es |
dc.affiliation.grupoinv | UC3M. Grupo de Investigación: Network Technologies | es |
dc.contributor.author | Allegretta, Mauro | |
dc.contributor.author | Siracusano, Giuseppe | |
dc.contributor.author | González Sánchez, Roberto | |
dc.contributor.author | Vallina Rodríguez, Pelayo | |
dc.contributor.author | Gramaglia, Marco | |
dc.contributor.funder | European Commission | es |
dc.contributor.funder | Ministerio de Asuntos Económicos y Transformación Digital (España) | es |
dc.date.accessioned | 2023-04-17T09:37:44Z | |
dc.date.issued | 2023-03-23 | |
dc.description | Proceeding of: 2023 18th Wireless On-Demand Network Systems and Services Conference (WONS), 30 January 2023 - 01 February 2023, Madonna di Campiglio, Italy. | en |
dc.description.abstract | The forensic analysis of Cyber Threat Intelligence (CTI) data is of capital importance for businesses and enterprises to understand what has possibly gone wrong in a cybersecurity system. Moreover, the fast evolution of the techniques used by cybercriminals requires collaboration among multiple partners to provide efficient security mechanisms. STIX has emerged as the industrial standard to share CTI data in a structured format, allowing entities from over the world to exchange information to broaden the knowledge base in the area. In this work, we shed light on the type of information contained in these datasets shared among partners. We analyze a large real-world STIX dataset and identify trends for the reporting of CTI data. Then, we deep dive into two kinds of attack patterns found in the dataset: Command & Control and Malicious Software Download. We found the data is not only useful for forensic analysis but can also be used to improve the protection against new attacks. | en |
dc.description.sponsorship | The work of UC3M has been supported by the Spanish Ministry of Economic Affairs and Digital Transformation and the European Union-NextGenerationEU through the UNICO 5G I+D project 6G-RIEMANN. The work of NEC Laboratories Europe has been supported by the EU research project MARSAL (Grant Agreement 101017171). | en |
dc.format.extent | 4 | |
dc.identifier.bibliographicCitation | 2023 18th Wireless On-Demand Network Systems and Services Conference (WONS). IEEE, 2023. Pp. 100-103. | en |
dc.identifier.doi | https://doi.org/10.23919/WONS57325.2023.10061921 | |
dc.identifier.isbn | 978-3-903176-56-0 | |
dc.identifier.publicationfirstpage | 100 | |
dc.identifier.publicationlastpage | 103 | |
dc.identifier.publicationtitle | 2023 18th Wireless On-Demand Network Systems and Services Conference (WONS) | en |
dc.identifier.uri | https://hdl.handle.net/10016/37100 | |
dc.identifier.uxxi | CC/0000034157 | |
dc.language.iso | eng | en |
dc.publisher | IEEE | en |
dc.relation.eventdate | 30 January 2023 - 01 February 2023 | en |
dc.relation.eventplace | Madonna di Campiglio, Italia. | it |
dc.relation.eventtitle | Wireless On-Demand Network Systems and Services Conference (WONS 2023) | en |
dc.relation.projectID | Gobierno de España. TSI-063000-2021-141 | es |
dc.relation.projectID | Gobierno de España. TSI-063000-2021-142 | es |
dc.relation.projectID | Gobierno de España. TSI-063000-2021-147 | es |
dc.relation.projectID | Gobierno de España. TSI-063000-2021-146 | es |
dc.relation.projectID | info:eu-repo/grantAgreement/EC/H2020/101017171/MARSAL | en |
dc.rights | © 2023 International Federation for Information Processing (IFIP) / IEEE. | en |
dc.rights.accessRights | embargoed access | en |
dc.subject.eciencia | Telecomunicaciones | es |
dc.subject.other | Wireless communication | en |
dc.subject.other | Forensics | en |
dc.subject.other | Knowledge based systems | en |
dc.subject.other | Collaboration | en |
dc.subject.other | Market research | en |
dc.subject.other | Malware | en |
dc.subject.other | Cyber threat intelligence | en |
dc.title | Using CTI Data to Understand Real World Cyberattacks | en |
dc.type | conference paper | * |
dc.type.hasVersion | AM | * |
dspace.entity.type | Publication |
Files
Original bundle
1 - 1 of 1
No Thumbnail Available
- Name:
- using_WONS_2023_ps.pdf
- Size:
- 278.03 KB
- Format:
- Adobe Portable Document Format