Threat Intelligence Exchange communication protocol. Exchanging intelligence among trusted parts in a secure way is the critical point in the Threat Intelligence context. There are existing Threat Intelligence Exchanging protocols at the application level such as [TAXII], [OpenDXL] or [MISP Sync]. These protocols use HTTPS as channel for exchanging communication, enabling organisations to share and exchange cyberthreat intelligence by defining an API with a common sharing model. 4SECURail acknowledges the existence of CSIRT information and Threat Intelligence Platforms (TIPs), and thus will seek interoperability with existing and legacy threat intelligence tools by assuring compliance with these communication protocols (providing specific connectors or bridges when required) widely adopted by the Cybersecurity community, thus allowing threat information exchange regardless the particular TIP used on each side of the communication.
Appears in 2 contracts
Sources: Deliverable D3.2, Grant Agreement