Cyber threat intelligence information sharing

Today, the socio-political and technological transformation of mankind is being challenged by a series of sophisticated cybersecurity threats and technology-enabled crimes. Governments, academics, industry groups, and business organisations are actively engaged looking for cost-effective solutions to prevent, detect and protect against this malpractice. Unfortunately, there is a list of factors that have hindered the prosperity of these efforts with the sharing of clean data and cyber intelligence at the top of that list. Sensitive legal, ethical and business issues make it difficult to share and find good reliable sanitised data for research, development, and testing in cybersecurity. To address this problem, it is necessary a global collaborative effort to standardise the sharing and structure of cyber threat intelligence information. The standard will lead to the research and development of innovative knowledge-based strategies with much higher levels of action possibilities and automation to create stronger reliable and efficient layers of security. In this regard, this research paper discusses a new approach to cyber intelligence information exchange based on current research frameworks including NIST Cybersecurity, Intrusion Kill Chains, and STIX Cyber Threat Intelligence Reference Model.