Cyber-All-Intel: An AI for Security Related Threat Intelligence
May 7, 2019
Keeping up with threat intelligence is a must for a security analyst today. There is a volume of information present in `the wild' that affects an organization. We need to develop an artificial intelligence system that scours the intelligence sources to keep the analyst updated about various threats that pose a risk to her organization. A security analyst who is better `tapped in' can be more effective. This paper presents Cyber-All-Intel, an artificial intelligence system to aid a security analyst. It is a system for knowledge extraction, representation, and analytics in an end-to-end pipeline grounded in the cybersecurity informatics domain. It uses multiple knowledge representations like vector spaces and knowledge graphs in a 'VKG structure' to store incoming intelligence. The system also uses neural network models to improve its knowledge proactively. We have also created a query engine and an alert system that an analyst can use to find actionable cybersecurity insights.
Misc
CoRR abs/1905.02895
https://arxiv.org/abs/1905.02895
Downloads: 235 downloads