CyberTIM 2019

2nd International Workshop on Cyber Threat Intelligence Management (CyberTIM 2019)

to be held in conjunction with ARES 2019
( http://www.ares-conference.eu )

University of Kent, Canterbury, UK August 26 – August 29, 2019

The increased sophistication of cyber-attacks has created a technology arm race between attackers and defenders. However, this arm race is not fought in equal terms. Defenders are falling behind due to lack of manpower coupled with an overwhelming number of sophisticated attacks, e.g. advanced persistent threats, making cyber defense extremely difficult. This is also due to lack of collaboration among the network security solutions, e.g., intrusion detection systems and honeypots, which are in possession of different organizations across the globe.

In the recent years, organizations like CERTs, NRENs, as well as industry organizations are moving towards proactive detection capabilities leveraging Cyber Threat Intelligence (CTI) platforms. These platforms aim at advanced alert aggregation, correlation, and prioritization considering the asset criticality of organizations as well as the quality of shared threat intelligence. The goal of CyberTIM is to bring the industry practitioners, researchers, engineers, and academic researchers together from the domain of network security, network measurements, cyber incident monitoring, trust & risk management, cyber situational awareness, security analytics, and security visualization.

Topics of interest include, but are not limited to

Network Intrusions
Cyber threat detection
Cyber threat prediction
End-to-End threat intelligence
Threat Intelligence sharing
Collaborative Intrusion Detection
Blockchain-based TI sharing
Cyber situational awareness
Cyber threat analytics
Cyber threat sharing community
Trust management in/for Cyber Threat Intelligence
Cyber threat visualization

Cyber threat monitoring
Botnet monitoring
Cyber threat correlation techniques
Cyber threat prioritization techniques
Cyber threat sharing platforms
Alert exchange formats
Alert exchange protocols
Cyber-crime forensics
Cyber-crime risk management
Incident response
Automotive threat intelligence (backend and on-board)

Important Dates
Submission Deadline May 10, 2019
Author Notification June 10, 2019
Proceedings Version June 23, 2019
ARES EU Symposium August 26, 2019
Conference August 26 – August 29, 2019
Keynote

CTI in Cyber Defence: Challenges and opportunities
Dr. Panayotis Kikiras, European Defense Agency (EDA)

Abstract : The scope of the presentation will be to explore the role of CTI in Cyber Defence. Concepts like Cyber Kill chain vs Observe-Orient-Decide-Act and the impact of CTI techniques to the optimisation of blue forces OODA cycle will be presented.
In addition, the impact of AI enabled CTI will be discussed along with the envisaged role of CTI as a key tool for future Information Superiority. Finally, The role of European Defence Agency in the EU research landscape will be explained and research and funding opportunities for dual and defence topics will be presented.

Panayotis is currently Head of Unit Technology and Innovation in European Defense Agency in Brussels. Through its work on innovative research the directorate supports EDA Member States in their efforts to cooperate, promote and manage cooperative Research and Technology projects. It identifies dual-use synergies and opportunities with the European Commission and the European Space Agency to enhance civil-military cooperation, interoperability and effective R&T spending. Panayotis before EDA, have been working for AGT International since 2011. He was Vice President of Research leading the enabling technologies research group which conducts research in the areas of Cyber Security, Big Data and Energy Analytics.

He holds a PhD and an MSc in Computer and Electrical Engineering from the Technical University of Athens and an MSc in Management and Economics of Communication Networks from the University of Athens. In the academic field Panayotis was an Adjunct Associate Professor at the University of Thessaly Greece, Department of Computer and Network engineering and Department of Informatics. Panayotis has authored more than 50 peer reviewed papers and a number of technical reports and he is a senior member of IEEE.

Steering Committee

Dr. Brian Lee, Athlone Institute of Technology, Ireland
Dr. Fabio Martinelli, IIT, C.N.R, Italy
Dr. Sheikh Mahbub Habib, Continental AG, Frankfurt, Germany
Dr. Max Mühlhäuser, TU Darmstadt, Germany

Workshop Chairs

Dr. Emmanouil Vasilomanolakis, Aalborg University, Denmark
Dr. Jassim Happa, University of Oxford, UK
Dr. Raymond Choo, The University of Texas at San Antonio, USA

TPC Members

Jason Nurse, University of Kent, UK
Georgios Kambourakis, University of the Aegean, GR
Andrea Tundis, TU Darmstadt, DE
Salvador Llopis, Universitat Politecnica de Valencia, SP
Michal Choras, ITTI Ltd., PL
Jens Myrup Pedersen, Aalborg University, DK
Abhijit Ambekar, Continental Teves AG & Co. oHG, DE
Xiaolu Zhang, University of Texas at San Antonio, USA
Shankar Karuppayah, Universiti Sains Malaysia, MY
Reza M. Parizi, Kennesaw State University, USA
Marcin Przybyszewski, ITTI, PL
Jörg Daubert, Philipps-Universität Marburg, DE
Andrea Saracino, Consiglio Nazionale delle Ricerche, IT
Theo Dimitrakos, European Security Competence Center, Huawei Technologies, UK
David Chadwick, University of Kent, UK

Submission Guidelines

The submission guidelines can be found at https://www.ares-conference.eu/conference/submission/ (6-8 pages, a maximum of 10 pages is tolerated).
Double blind review: All papers submitted to EasyChair should be anonymized (no names or affiliations of authors should be visible in the paper) with no obvious self-references.
Submission of a paper implies that should the paper be accepted, at least one of the authors will register and present the paper in the workshop.
Proceedings will be published by ACM.