Connecting Critical Infrastructure Operators and Law Enforcement Agencies to Share Cyber Incident Information with Early Warning Systems

Harri Ruoslahti; Ilkka Tikanmäki; Ilkka Tikanmäki

doi:10.5220/0013067100003838

Connecting Critical Infrastructure Operators and Law Enforcement Agencies to Share Cyber Incident Information with Early Warning Systems

Harri Ruoslahti, Ilkka Tikanmäki, Ilkka Tikanmäki

2024

Abstract

Cyber incidents and business interruptions rank as the foremost business risks. With Early Warning Systems (EWS), that work in parallel with other cyber mechanisms, organisations can independently manage cyber-sensitive intelligence-related data. This article provides a qualitative multi-case study analysis. The data consists of systematic reviews and cross-case conclusions of six (n = 6) case studies on information sharing. EWS is a valuable tool that can help critical infrastructure providers protect against cyberattacks. EWS can provide a platform for sharing information and resources. This can help improve situational awareness, enhance incident response, and facilitate collaboration. between critical infrastructure providers, as critical infrastructure operators and relevant Law Enforcement Agencies (LEA) can share information on cyber incidents and monitor cyber incident progress. EWS can be used to exchange cyber threat intelligence and information sharing can be facilitated with a common reference library where alerts can be shared as tickets. This would enable information exchange in both directions.

Download

Paper Citation

in Harvard Style

Ruoslahti H. and Tikanmäki I. (2024). Connecting Critical Infrastructure Operators and Law Enforcement Agencies to Share Cyber Incident Information with Early Warning Systems. In Proceedings of the 16th International Joint Conference on Knowledge Discovery, Knowledge Engineering and Knowledge Management - Volume 3: KMIS; ISBN 978-989-758-716-0, SciTePress, pages 347-355. DOI: 10.5220/0013067100003838

in Bibtex Style

@conference{kmis24,
author={Harri Ruoslahti and Ilkka Tikanmäki},
title={Connecting Critical Infrastructure Operators and Law Enforcement Agencies to Share Cyber Incident Information with Early Warning Systems},
booktitle={Proceedings of the 16th International Joint Conference on Knowledge Discovery, Knowledge Engineering and Knowledge Management - Volume 3: KMIS},
year={2024},
pages={347-355},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0013067100003838},
isbn={978-989-758-716-0},
}

in EndNote Style

TY - CONF

JO - Proceedings of the 16th International Joint Conference on Knowledge Discovery, Knowledge Engineering and Knowledge Management - Volume 3: KMIS
TI - Connecting Critical Infrastructure Operators and Law Enforcement Agencies to Share Cyber Incident Information with Early Warning Systems
SN - 978-989-758-716-0
AU - Ruoslahti H.
AU - Tikanmäki I.
PY - 2024
SP - 347
EP - 355
DO - 10.5220/0013067100003838
PB - SciTePress