%0 Conference Proceedings
%T On the Sharing of Cyber Security Information
%+ The Netherlands Organisation for Applied Scientific Research (TNO)
%A Luiijf, Eric
%A Klaver, Marieke
%Z Part 1: THEMES AND ISSUES
%< avec comité de lecture
%( IFIP Advances in Information and Communication Technology
%B 9th International Conference on Critical Infrastructure Protection (ICCIP)
%C Arlington, VA, United States
%Y Mason Rice
%Y Sujeet Shenoi
%3 Critical Infrastructure Protection IX
%V AICT-466
%P 29-46
%8 2015-03-16
%D 2015
%R 10.1007/978-3-319-26567-4_3
%K Information sharing
%K cyber security
%K resilience
%K incident management
%Z Computer Science [cs]Conference papers
%X The sharing of cyber security information between organizations, both public and private, and across sectors and borders is required to increase situational awareness, reduce vulnerabilities, manage risk and enhance cyber resilience. However, the notion of information sharing often is a broad and multi-faceted concept. This chapter describes an analytic framework for sharing cyber security information. A decomposition of the information sharing needs with regard to information exchange elements is mapped to a grid whose vertical dimension spans the strategic/policy, tactical and operational/technical levels and whose horizontal dimension spans the incident response cycle. The framework facilitates organizational and legal discussions about the types of cyber security information that can be shared with other entities along with the terms and conditions of information sharing. Moreover, the framework helps identify important aspects that are missing in existing information exchange standards.
%G English
%Z TC 11
%Z WG 11.10
%2 https://inria.hal.science/hal-01431012/document
%2 https://inria.hal.science/hal-01431012/file/978-3-319-26567-4_3_Chapter.pdf
%L hal-01431012
%U https://inria.hal.science/hal-01431012
%~ IFIP
%~ IFIP-AICT
%~ IFIP-TC
%~ IFIP-TC11
%~ IFIP-WG11-10
%~ IFIP-AICT-466