Decaying Indicators of Compromise
نویسندگان
چکیده
The steady increase in the volume of indicators of compromise (IoC) as well as their volatile nature makes their processing challenging. Once compromised infrastructures are cleaned up, threat actors are moving to on to other target infrastructures or simply changing attack strategies. To ease the evaluation of IoCs as well as to harness the combined analysis capabilities, threat intelligence sharing platforms were introduced in order to foster collaboration on a community level. In this paper, the open-source threat intelligence platform MISP is used to implement and showcase a generic scoring model for decaying IoCs shared within MISP communities matching their heterogeneous objectives. The model takes into account existing meta-information shared along with indicators of compromise, facilitating the decision making process for machines in regards to the validity of the shared indicator of compromise. The model is applied on common use-cases that are normally encountered during incident response. Keywords—Indicators of Compromise, Decay functions, Information Sharing, Incident Response
منابع مشابه
Spatial analysis of social pathology in Iran from the perspective of social geography using the Cocoso technique
Aims and Background: One of the issues that have a great contribution in achieving social comfort and welfare is security and analysis of its related components. The present study was conducted with the aim of social pathology and analyzing indicators related to social security in Iran by using the combined compromise solution, which is one of the new multi-attribute decision-making techniques....
متن کاملMangrove vegetation and community structure of brachyuran crabs as ecological indicators of Pondicherry coast, South east coast of India
Baseline ecological studies of Pondicherry mangroves are important for monitoring, management and conservation of mangrove ecosystems. A brachyuran crab faunal assemblage at four stations of Pondicherry mangroves is described and monthly samplings were made during September 2008 – August 2009. Totally 22 species of brachyuran crabs belonging to 12 genera and 5 families were recorded crabs bel...
متن کاملEvolution of the density contrast in inhomogeneous dust models
With the help of families of density contrast indicators, we study the tendency of gravitational systems to become increasingly lumpy with time. Depending upon their domain of definition, these indicators could be local or global. We make a comparative study of these indicators in the context of inhomogeneous cosmological models of Lemaitre–Tolman and Szekeres. In particular, we look at the tem...
متن کاملDoes food insecurity compromise maternal dietary zinc or energy intake in favor of her child, in rural poor Mexican households?
OBJECTIVE To analyze quantitative indicators of food insecurity (FI), and estimate if FI modifies the association between maternal and child Zinc and energy intake as evidence for maternal dietary compromise in favor of her child. MATERIAL AND METHODS Cross-sectional study (n=2 563), data derived from baseline impact evaluation of the Mexican Programa de Apoyo Alimentario. Quantitative indica...
متن کاملScalings of Inverse Energy Transfer and Energy Decay in 3-D Decaying Isotropic Turbulence with Non-rotating or Rotating Frame of Reference
Energy development of decaying isotropic turbulence in a 3-D periodic cube with non-rotating or rotating frames of reference is studied through direct numerical simulation using GPU accelerated lattice Boltzmann method. The initial turbulence is isotropic, generated in spectral space with prescribed energy spectrum E(κ)~κm in a range between κmin and ...
متن کامل