Title :
A trusted security information sharing mechanism
Author :
Tsai, Dwen-Ren ; Chen, Wen-Chi ; Lu, Yin-Chia ; Wu, Chi-Wen
Author_Institution :
Dept. of Comput. Sci., Chinese Culture Univ., Taipei, Taiwan
Abstract :
Security Operations Center (SOC) is a unit inside or outside an organization that monitors and deals with information security incidents, on a technical level. In this paper, a trusted security incident information sharing mechanism among SOCs is proposed. The information needed to share among SOCs to prevent incident dispersions usually were just the time of occurrence, origin of attack, consequence, severity and path of attack. In the proposed mechanism, we aim to share the minimum information required. Secure data transferred paths can be used. We hope the adopting of the mechanism may increase the willing of sharing security information among SOCs.
Keywords :
organisational aspects; security of data; incident dispersion; organization; secure data transfer path; security operations center; trusted security information sharing mechanism; Computer architecture; Computer displays; Computer science; Computer security; Data security; Information analysis; Information security; Internet; Protection; Research and development; Information Incident; Security Information Sharing; Security Operations Center (SOC);
Conference_Titel :
Security Technology, 2009. 43rd Annual 2009 International Carnahan Conference on
Conference_Location :
Zurich
Print_ISBN :
978-1-4244-4169-3
Electronic_ISBN :
978-1-4244-4170-9
DOI :
10.1109/CCST.2009.5335529
