Cyber Security Information Sharing During a Large Scale Real Life Cyber Security Exercise

In the event of a cyber attack, the efficient production and utilisation of situational information is achieved by sharing information with other actors. In our research, we have discovered how information related to cyber security can be shared online as efficiently as possible between organisations. We used the constructive method to implement a cyber sercurity information sharing network using the Malware Information Sharing Project (MISP). The model was tested in a pilot exercise in fall 2021. The key findings in connection with the pilot showed that it is particularly important for the recipient of information security information how quickly and accurately the information security event is described. In order to help quick reaction, it would also be necessary to implement informal channels, through which security information can be shared easily without structured event descriptions.

Authors

Jari Hautamäki, Tero Kokkonen, Tuomo Sipola

Cite as

Hautamäki, J., Kokkonen, T., Sipola, T. (2024). Cyber Security Information Sharing During a Large Scale Real Life Cyber Security Exercise. In: Rocha, Á., Adeli, H., Dzemyda, G., Moreira, F., Poniszewska-Marańda, A. (eds) Good Practices and New Perspectives in Information Systems and Technologies. WorldCIST 2024. Lecture Notes in Networks and Systems, vol 987. Springer, Cham. https://doi.org/10.1007/978-3-031-60221-4_5

Publication

https://doi.org/10.1007/978-3-031-60221-4_5

Slide

Adding resilience to digital business

Slide

JYVSECTEC – Jyväskylä Security Technology is an independent research, development, and training center in Finland. We operate as part of Jamk University of Applied Science's Institute of Information Technology.

LinkedIn logo
YouTube logo
GitHub logo

Jamk University of Applied Sciences, Institute of Information Technology
Piippukatu 2, 40100 Jyväskylä, Finland
jyvsectec@jamk.fi

JYVSECTEC – Jyväskylä Security Technology © 2025 Finland.