skip to main content
OSTI.GOV title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Towards Efficient Collaboration in Cyber Security

Abstract

Cyber security analysts in different geographical and organizational domains are often largely tasked with similar duties, albeit with domain-specific variations. These analysts necessarily perform much of the same work independently— for instance, analyzing the same list of security bulletins released by largely the same set of software vendors. As such, communication and collaboration between such analysts would be mutually beneficial to the analysts involved, potentially reducing redundancy and offering the opportunity to preemptively alert each other to high-severity security alerts in a more timely fashion. However, several barriers to practical and efficient collaboration exist, and as such, no such framework exists to support such efforts. In this paper, we discuss the inherent difficulties which make efficient collaboration between cyber security analysts a difficult goal to achieve. We discuss preliminary ideas and concepts towards a collaborative cyber-security framework currently under development, whose goal is to facilitate analyst collaboration across these boundaries. While still in its early stages, we describe work-in-progress towards achieving this goal, including motivation, functionality, concepts, and a high-level description of the proposed system architecture.

Authors:
; ; ; ; ; ;
Publication Date:
Research Org.:
Pacific Northwest National Lab. (PNNL), Richland, WA (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
986266
Report Number(s):
PNNL-SA-70532
TRN: US201017%%41
DOE Contract Number:  
AC05-76RL01830
Resource Type:
Conference
Resource Relation:
Conference: International Symposium on Collaboration and Security (CTS '10) , 489 - 498
Country of Publication:
United States
Language:
English
Subject:
97 MATHEMATICAL METHODS AND COMPUTING; COMPUTER NETWORKS; SECURITY; COORDINATED RESEARCH PROGRAMS; Collaboration, Security, I4, Cyber security, Vulcan

Citation Formats

Hui, Peter SY, Bruce, Joseph R., Fink, Glenn A., Gregory, Michelle L., Best, Daniel M., McGrath, Liam R., and Endert, Alexander. Towards Efficient Collaboration in Cyber Security. United States: N. p., 2010. Web. doi:10.1109/CTS.2010.5478473.
Hui, Peter SY, Bruce, Joseph R., Fink, Glenn A., Gregory, Michelle L., Best, Daniel M., McGrath, Liam R., & Endert, Alexander. Towards Efficient Collaboration in Cyber Security. United States. doi:10.1109/CTS.2010.5478473.
Hui, Peter SY, Bruce, Joseph R., Fink, Glenn A., Gregory, Michelle L., Best, Daniel M., McGrath, Liam R., and Endert, Alexander. Thu . "Towards Efficient Collaboration in Cyber Security". United States. doi:10.1109/CTS.2010.5478473.
@article{osti_986266,
title = {Towards Efficient Collaboration in Cyber Security},
author = {Hui, Peter SY and Bruce, Joseph R. and Fink, Glenn A. and Gregory, Michelle L. and Best, Daniel M. and McGrath, Liam R. and Endert, Alexander},
abstractNote = {Cyber security analysts in different geographical and organizational domains are often largely tasked with similar duties, albeit with domain-specific variations. These analysts necessarily perform much of the same work independently— for instance, analyzing the same list of security bulletins released by largely the same set of software vendors. As such, communication and collaboration between such analysts would be mutually beneficial to the analysts involved, potentially reducing redundancy and offering the opportunity to preemptively alert each other to high-severity security alerts in a more timely fashion. However, several barriers to practical and efficient collaboration exist, and as such, no such framework exists to support such efforts. In this paper, we discuss the inherent difficulties which make efficient collaboration between cyber security analysts a difficult goal to achieve. We discuss preliminary ideas and concepts towards a collaborative cyber-security framework currently under development, whose goal is to facilitate analyst collaboration across these boundaries. While still in its early stages, we describe work-in-progress towards achieving this goal, including motivation, functionality, concepts, and a high-level description of the proposed system architecture.},
doi = {10.1109/CTS.2010.5478473},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2010},
month = {6}
}

Conference:
Other availability
Please see Document Availability for additional information on obtaining the full-text document. Library patrons may search WorldCat to identify libraries that hold this conference proceeding.

Save / Share: