Skip to main content

A Socio-Technical Perspective on Threat Intelligence Informed Digital Forensic Readiness.

Serketzis, N., Katos, V., Ilioudis, C., Baltatzis, D. and Pangalos, G., 2018. A Socio-Technical Perspective on Threat Intelligence Informed Digital Forensic Readiness. International Journal of Systems and Society, 4 (2), 5.

Full text available as:

[img]
Preview
PDF
A-Socio-Technical-Perspective-on-Threat-Intelligence-Informed-Digital-Forensic-Readiness.pdf - Published Version
Available under License Creative Commons Attribution Non-commercial.

596kB

DOI: 10.4018/IJSS.2017070105

Abstract

In this article, a DFR framework is proposed focusing on the prioritization, triaging and selection of Indicators of Compromise (IoC) to be used when investigating of security incidents. A core component of the framework is the contextualization of the IoCs to the underlying organization, which can be achieved with the use of clustering and classification algorithms and a local IoC database.

Item Type:Article
ISSN:2327-3984
Uncontrolled Keywords:advanced persistent threats; digital forensic readiness; indicators of compromise; intelligent evidence storage system; IOC; STIX; TAXII; threat intelligence
Group:Faculty of Science & Technology
ID Code:34180
Deposited By: Unnamed user with email symplectic@symplectic
Deposited On:22 Jun 2020 13:36
Last Modified:22 Jun 2020 13:36

Downloads

Downloads per month over past year

More statistics for this item...
Repository Staff Only -