Empirical study on the use of threat intelligence sharing platforms
The security of IT systems is one of the key success factors of digitization. However, there are not always sufficient resources available to organisations to ensure adequate IT security levels. One option for reducing this problem is more intensive automation of IT security subtasks. Threat Intelligence Sharing Platforms (TISPs) may be a key building block in this respect. These platforms are Internet-based platforms for the cross-organisational exchange of threat and security information. TISPs support the collection of data originating from different sources, their aggregation and joint evaluation as well as the export of analysis data to IT systems of organisations and enable a faster, more targeted and more efficient detection and combating security incidents.
The aim of this survey is to investigate how common the use of threat intelligence sharing platforms (TISPs) is worldwide and how intensively, how precisely and what the purposes are for which these platforms are used in companies, authorities, and universities. After evaluating the survey results, we expect to describe the current status quo of the use of TISPs more accurately. Based on the findings of the survey, recommendations for the use of TISPs will be developed. This should enable IT security managers to use these platforms in a more targeted and efficient manner.
A team of researchers from the Department of Information and Knowledge Management at the Technische Universität Ilmenau and the Department of Computer Science at the University of Innsbruck is responsible for the study.
After evaluating the survey results, we expect to be able to describe the status quo of the use of TISPs in more detail. Among other things, the following research questions will be answered:
Based on the findings of the study, recommendations for the use of TISPs will be developed. This should enable IT security managers to use these platforms in a more targeted and efficient manner.
The following target groups can benefit from the results of the study: