Proof-of-Concept for a Granular Incident Management Information Sharing Scheme

Outi Marja Latvala; Ivo Emanuilov; Tatu Niskanen; Pia Raitio; Jarno Salonen; Diogo Santos; Katerina Yordanova

doi:10.1109/AIIoT54504.2022.9817254

Proof-of-Concept for a Granular Incident Management Information Sharing Scheme

Outi Marja Latvala, Ivo Emanuilov, Tatu Niskanen, Pia Raitio, Jarno Salonen, Diogo Santos, Katerina Yordanova

Research output: Chapter in Book/Report/Conference proceeding › Conference article in proceedings › Scientific › peer-review

2 Citations (Scopus)

Abstract

Trust is a key ingredient in collaboration between security operations centers (SOCs). The collaboration can enhance defense and preparedness against cyberattacks, but it is also important to limit the attacker's ability to infer their potential for success from the communication between SOCs. This paper presents a proof-of-concept for a granular information sharing scheme. The information about a security incident is encrypted and the SOCs can decide with great precision which users or user groups can access it. The information is presented in a web-based dasboard visualization, and a user can communicate with other SOCs in order to access relevant incident information.

Original language	English
Title of host publication	2022 IEEE World AI IoT Congress, AIIoT 2022
Publisher	IEEE Institute of Electrical and Electronic Engineers
Pages	515-520
Number of pages	6
ISBN (Electronic)	978-1-66548-453-4
DOIs	https://doi.org/10.1109/AIIoT54504.2022.9817254
Publication status	Published - 2022
MoE publication type	A4 Article in a conference publication
Event	2022 IEEE World AI IoT Congress, AIIoT 2022 - Seattle, United States Duration: 6 Jun 2022 → 9 Jun 2022

Conference

Conference	2022 IEEE World AI IoT Congress, AIIoT 2022
Country/Territory	United States
City	Seattle
Period	6/06/22 → 9/06/22

Funding

ACKNOWLEDGMENTS This work has been conducted in the Secure Collaborative Intelligent Industrial Assets (SeCoIIA) project that aims at securing the digital transition of manufacturing industry towards more connected, collaborative, flexible and automated production techniques. The project has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 871967.

Keywords

Fine-grained access control
Incident management
Information sharing

Access to Document

10.1109/AIIoT54504.2022.9817254

Cite this

@inproceedings{cd2a81806eff494ea3b6fdc151d32146,

title = "Proof-of-Concept for a Granular Incident Management Information Sharing Scheme",

abstract = "Trust is a key ingredient in collaboration between security operations centers (SOCs). The collaboration can enhance defense and preparedness against cyberattacks, but it is also important to limit the attacker's ability to infer their potential for success from the communication between SOCs. This paper presents a proof-of-concept for a granular information sharing scheme. The information about a security incident is encrypted and the SOCs can decide with great precision which users or user groups can access it. The information is presented in a web-based dasboard visualization, and a user can communicate with other SOCs in order to access relevant incident information.",

keywords = "Fine-grained access control, Incident management, Information sharing",

author = "Latvala, {Outi Marja} and Ivo Emanuilov and Tatu Niskanen and Pia Raitio and Jarno Salonen and Diogo Santos and Katerina Yordanova",

note = "Funding Information: ACKNOWLEDGMENTS This work has been conducted in the Secure Collaborative Intelligent Industrial Assets (SeCoIIA) project that aims at securing the digital transition of manufacturing industry towards more connected, collaborative, flexible and automated production techniques. The project has received funding from the European Union{\textquoteright}s Horizon 2020 research and innovation programme under grant agreement No 871967. Publisher Copyright: {\textcopyright} 2022 IEEE.; 2022 IEEE World AI IoT Congress, AIIoT 2022 ; Conference date: 06-06-2022 Through 09-06-2022",

year = "2022",

doi = "10.1109/AIIoT54504.2022.9817254",

language = "English",

pages = "515--520",

booktitle = "2022 IEEE World AI IoT Congress, AIIoT 2022",

publisher = "IEEE Institute of Electrical and Electronic Engineers",

address = "United States",

}

Latvala, OM, Emanuilov, I, Niskanen, T, Raitio, P, Salonen, J, Santos, D & Yordanova, K 2022, Proof-of-Concept for a Granular Incident Management Information Sharing Scheme. in 2022 IEEE World AI IoT Congress, AIIoT 2022. IEEE Institute of Electrical and Electronic Engineers, pp. 515-520, 2022 IEEE World AI IoT Congress, AIIoT 2022, Seattle, Washington, United States, 6/06/22. https://doi.org/10.1109/AIIoT54504.2022.9817254

Proof-of-Concept for a Granular Incident Management Information Sharing Scheme. / Latvala, Outi Marja; Emanuilov, Ivo; Niskanen, Tatu et al.
2022 IEEE World AI IoT Congress, AIIoT 2022. IEEE Institute of Electrical and Electronic Engineers, 2022. p. 515-520.

Research output: Chapter in Book/Report/Conference proceeding › Conference article in proceedings › Scientific › peer-review

TY - GEN

T1 - Proof-of-Concept for a Granular Incident Management Information Sharing Scheme

AU - Latvala, Outi Marja

AU - Emanuilov, Ivo

AU - Niskanen, Tatu

AU - Raitio, Pia

AU - Salonen, Jarno

AU - Santos, Diogo

AU - Yordanova, Katerina

N1 - Funding Information: ACKNOWLEDGMENTS This work has been conducted in the Secure Collaborative Intelligent Industrial Assets (SeCoIIA) project that aims at securing the digital transition of manufacturing industry towards more connected, collaborative, flexible and automated production techniques. The project has received funding from the European Union’s Horizon 2020 research and innovation programme under grant agreement No 871967. Publisher Copyright: © 2022 IEEE.

PY - 2022

Y1 - 2022

N2 - Trust is a key ingredient in collaboration between security operations centers (SOCs). The collaboration can enhance defense and preparedness against cyberattacks, but it is also important to limit the attacker's ability to infer their potential for success from the communication between SOCs. This paper presents a proof-of-concept for a granular information sharing scheme. The information about a security incident is encrypted and the SOCs can decide with great precision which users or user groups can access it. The information is presented in a web-based dasboard visualization, and a user can communicate with other SOCs in order to access relevant incident information.

AB - Trust is a key ingredient in collaboration between security operations centers (SOCs). The collaboration can enhance defense and preparedness against cyberattacks, but it is also important to limit the attacker's ability to infer their potential for success from the communication between SOCs. This paper presents a proof-of-concept for a granular information sharing scheme. The information about a security incident is encrypted and the SOCs can decide with great precision which users or user groups can access it. The information is presented in a web-based dasboard visualization, and a user can communicate with other SOCs in order to access relevant incident information.

KW - Fine-grained access control

KW - Incident management

KW - Information sharing

UR - http://www.scopus.com/inward/record.url?scp=85134875255&partnerID=8YFLogxK

U2 - 10.1109/AIIoT54504.2022.9817254

DO - 10.1109/AIIoT54504.2022.9817254

M3 - Conference article in proceedings

AN - SCOPUS:85134875255

SP - 515

EP - 520

BT - 2022 IEEE World AI IoT Congress, AIIoT 2022

PB - IEEE Institute of Electrical and Electronic Engineers

T2 - 2022 IEEE World AI IoT Congress, AIIoT 2022

Y2 - 6 June 2022 through 9 June 2022

ER -

Proof-of-Concept for a Granular Incident Management Information Sharing Scheme

Abstract

Conference

Funding

Keywords

Access to Document

Other files and links

Fingerprint

SeCoIIA: Secure Collaborative Intelligent Industrial Assets

Cite this

Proof-of-Concept for a Granular Incident Management Information Sharing Scheme

Abstract

Conference

Funding

Keywords

Access to Document

Other files and links

Fingerprint

Projects

SeCoIIA: Secure Collaborative Intelligent Industrial Assets

Cite this