Cyber threat intelligence has evolved significantly over the last few years, and many organisations have the practice of sharing intelligence with other peer organisations. Many commercial solutions support both human-in-the-loop and machine-to-machine threat intelligence sharing. Despite its importance in increasing operational efficiencies in cyber threat intelligence, benign intelligence sharing still needs to be explored. To this end, we are developing learning models and algorithms to extract information from security analyst reports and other online reports on benign events and automatically convert them to formats suitable for machine-to-machine intelligence sharing. Aslo, we will be using explainable AI techniques to further optimise the threat analysis process.
Funding Body – Defence Innovation Network and The University of Sydney
Investigators – Dr. Suranga Seneviratne, Dr. Caren Han (UWA), Mr. Ben Doyle (Thales-Australia)
PhD Student – Fariza Rashid