Early Warning Identity Threat and Mitigation System

Authors

  • Aditya Tyagi The University of Texas at Austin
  • Razieh Nokhbeh Zaeem
  • K. Suzanne Barber

DOI:

https://doi.org/10.14279/tuj.eceasst.80.1146

Abstract

While many organizations share threat intelligence, there is still a lack of actionable data for organizations to proactively and effectively respond to emerging identity threats to mitigate a wide range of crimes. There currently exists no solution for organizations to access current trends and intelligence to understand emerging threats and how to appropriately respond to them.  This research project delivers I-WARN to help bridge that gap. Using a wide range of open-source information, I-WARN gathers, analyzes, and reports on threats related to the theft, fraud, and abuse of Personally Identifiable Information (PII). I-WARN then maps those threats to the MITRE ATT&CK -- a framework that helps understand lateral movement of an attack --  to offer mitigation and risk reduction tactics. I-WARN aims to deliver actionable intelligence, offering early warning into threat behaviors, and mitigation responses.  This paper discusses the technical details of I-WARN, non-exhaustive  current solutions for threat intelligence sharing, and future work.

Downloads

Published

2021-09-08

How to Cite

[1]
A. Tyagi, R. Nokhbeh Zaeem, and K. S. Barber, “Early Warning Identity Threat and Mitigation System”, eceasst, vol. 80, Sep. 2021.

Issue

Vol. 80 (2021): Conference on Networked Systems 2021 (NetSys 2021)

Section

Articles

License

Copyright (c) 2021 Electronic Communications of the EASST

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.