Introduction to MISP

reportActive / Technical Report | Accesssion Number: AD1147457 | Open PDF

Abstract:

Cybersecurity Incident Response teams want to: Have a way to receive (trusted) data from other teams; Ideally reduce duplication during analysis; Move toward automated solutions where possible and appropriate; Restrict access to certain data according to policy/practices.

Author(s):
Perl, Sam
Author Organization(s):
CARNEGIE-MELLON UNIV PITTSBURGH PA
Funding Organization(s):
AIR FORCE LIFE CYCLE MANAGEMENT CENTER HANSCOM AFB MA, HANSCOM AFB , MA
Document Type:
Technical Report/Briefing Charts
Publication Date:
2020 Jan 01
Pagination:
43

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution Code:
A - Approved For Public Release
Distribution Statement: Public Release

RECORD

Collection: TRECMS
Identifying Numbers
Contract Number(s):
FA8702-15-D-0002
Subject Terms
Modernization Areas:
Cyber
Communities of Interest:
Cyber
Descriptor(s):
software development, correlation analysis, engineering, materials, platforms, universities, department of defense, governments, guarantees, information exchange, security, detection, detectors, indicators, artifacts, communities
Keyword(s):
ids(Intrusion Detection Systems), ttp(Tools techniques and procedures)
Subject Categories:
Mathematical and Computer Sciences
Creation Date:
2021 Sep 20
Update Date:
2021 Oct 01