INCREASING THE SECURITY OF GOVERNMENT INFORMATION RESOURCES AT THE EXPENSE OF USING THE THREAT INTELLIGENCE PLATFORM

Authors

  • Artem Zhylin Special Department № 5 of the Institute of Special Communications and Information Protection of the National Technical University of Ukraine “Kyiv Polytechnic Institute named after Igor Sikorsky” https://orcid.org/0000-0002-4959-612X
  • Bohdan Nikolaenko Special Department № 5 of the Institute of Special Communications and Information Protection of the National Technical University of Ukraine “Kyiv Polytechnic Institute named after Igor Sikorsky” https://orcid.org/0000-0002-6888-5947
  • Oleksandr Bakakynskyi Department of Cyber Defense of the Administration of the State Service for Special Communications and Infor-mation Protection of Ukraine https://orcid.org/0000-0001-9712-2036

DOI:

https://doi.org/10.18372/2410-7840.23.16401

Keywords:

Threat Intelligence, ublic information resources, security, threats, attackers, cyber attack indicators, cyber defense

Abstract

With the development of information technology, the need to solve the problem of information security has increased, as it has become the most important strategic resource. At the same time, the vulnerability of the modern information society to unreliable information, untimely receipt of information, industrial espionage, computer crime, etc. is increasing. In this case, the speed of threat detection, in the context of obtaining systemic information about attackers and possible techniques and tools for implementing cyberattacks in order to describe them and respond to them quickly is one of the urgent tasks. In particular, there is a challenge in the application of new systems for collecting information about cyber events, responding to them, storing and exchanging this information, as well as on its basis methods and means of finding attackers using integrated systems or platforms. To solve this type of problem, the promising direction of Threat Intelligence as a new mechanism for gaining knowledge about cyberattacks is studied. Threat Intelligence in cyber security tasks is defined. The analysis of cyberattack indicators and tools for obtaining them is carried out. The standards of description of compromise indicators and platforms of their processing are compared. The technique of Threat Intelligence in tasks of operative detection and blocking of cyberthreats to the state information resources is developed. This technique makes it possible to improve the productivity of cybersecurity analysts and increase the security of resources and information systems.

 

Downloads

Published

2022-01-21

How to Cite

Zhylin, . A., Nikolaenko, . B. ., & Bakakynskyi, . O. . (2022). INCREASING THE SECURITY OF GOVERNMENT INFORMATION RESOURCES AT THE EXPENSE OF USING THE THREAT INTELLIGENCE PLATFORM. Ukrainian Information Security Research Journal, 23(3), 136–146. https://doi.org/10.18372/2410-7840.23.16401

Issue

Vol. 23 No. 3 (2021): Випуск 3

Section

Articles

License

The scientific journal adheres to the principles of Open Access and provides free, immediate, and permanent access to all published materials without financial, technical, or legal barriers for readers.

All articles are published in Open Access under the Creative Commons Attribution 4.0 International (CC BY 4.0) license.

Copyright

Authors who publish their works in the journal:

  • retain the copyright to their publications;

  • grant the journal the right of first publication of the article;

  • agree to the distribution of their materials under the CC BY 4.0 license;

  • have the right to reuse, archive, and distribute their works (including in institutional and subject repositories), provided that proper reference is made to the original publication in the journal.