Cyber-All-Intel: An AI for Security Related Threat Intelligence

, , and

Keeping up with threat intelligence is a must for a security analyst today. There is a volume of information present in `the wild' that affects an organization. We need to develop an artificial intelligence system that scours the intelligence sources to keep the analyst updated about various threats that pose a risk to her organization. A security analyst who is better `tapped in' can be more effective. This paper presents Cyber-All-Intel, an artificial intelligence system to aid a security analyst. It is a system for knowledge extraction, representation, and analytics in an end-to-end pipeline grounded in the cybersecurity informatics domain. It uses multiple knowledge representations like vector spaces and knowledge graphs in a 'VKG structure' to store incoming intelligence. The system also uses neural network models to improve its knowledge proactively. We have also created a query engine and an alert system that an analyst can use to find actionable cybersecurity insights.


  • 1344369 bytes

Misc

CoRR abs/1905.02895

https://arxiv.org/abs/1905.02895

Downloads: 240 downloads

UMBC ebiquity