TY - GEN
T1 - Reference Model to Identify the Maturity Level of Cyber Threat Intelligence on the Dark Web
AU - Santos, Ricardo Meléndez
AU - Gallardo, Anthony Aguilar
AU - Aguirre, Jimmy Armas
N1 - Publisher Copyright:
© 2021, Springer Nature Switzerland AG.
PY - 2021
Y1 - 2021
N2 - In this article, we propose a reference model to identify the maturity level of the cyber intelligence threat process. This proposal considers the dark web as an important source of cyber threats causing a latent risk that organizations do not consider in their cybersecurity strategies. The proposed model aims to increase the maturity level of the process through a set of proposed controls according to the information found on the dark web. The model consists of three phases: (1) Identification of information assets using cyber threat intelligence tools. (2) Diagnosis of the exposure of information assets. (3) Proposal of controls according to the proposed categories and criteria. The validation of the proposal was carried out in an insurance institution in Lima, Peru, with data obtained by the institution. The measurement was made with artifacts that allowed to obtain an initial value of the current panorama of the company. Preliminary results showed 196 emails and passwords exposed on the dark web of which one corresponded to the technology manager of the company under evaluation. With this identification, it was diagnosed that the institution was at a “Normal” maturity level, and from the implementation of the proposed controls, the “Advanced” level was reached.
AB - In this article, we propose a reference model to identify the maturity level of the cyber intelligence threat process. This proposal considers the dark web as an important source of cyber threats causing a latent risk that organizations do not consider in their cybersecurity strategies. The proposed model aims to increase the maturity level of the process through a set of proposed controls according to the information found on the dark web. The model consists of three phases: (1) Identification of information assets using cyber threat intelligence tools. (2) Diagnosis of the exposure of information assets. (3) Proposal of controls according to the proposed categories and criteria. The validation of the proposal was carried out in an insurance institution in Lima, Peru, with data obtained by the institution. The measurement was made with artifacts that allowed to obtain an initial value of the current panorama of the company. Preliminary results showed 196 emails and passwords exposed on the dark web of which one corresponded to the technology manager of the company under evaluation. With this identification, it was diagnosed that the institution was at a “Normal” maturity level, and from the implementation of the proposed controls, the “Advanced” level was reached.
KW - Cyber threat intelligence
KW - Cybersecurity
KW - Dark web
KW - Maturity model
UR - https://www.scopus.com/pages/publications/85098151594
U2 - 10.1007/978-3-030-57548-9_15
DO - 10.1007/978-3-030-57548-9_15
M3 - Contribución a la conferencia
AN - SCOPUS:85098151594
SN - 9783030575472
T3 - Smart Innovation, Systems and Technologies
SP - 161
EP - 172
BT - Proceedings of the 5th Brazilian Technology Symposium - Emerging Trends, Issues, and Challenges in the Brazilian Technology
A2 - Iano, Yuzo
A2 - Arthur, Rangel
A2 - Saotome, Osamu
A2 - Kemper, Guillermo
A2 - Padilha França, Reinaldo
PB - Springer Science and Business Media Deutschland GmbH
T2 - 5th Brazilian Technology Symposium, BTSym 2019
Y2 - 22 October 2019 through 24 October 2019
ER -