CyberTIM 2021

4th International Workshop on Cyber Threat Intelligence Management (CyberTIM 2021)

to be held in conjunction with ARES 2021
( http://www.ares-conference.eu )

August 17 – August 20, 2021

The increased sophistication of cyber-attacks has created a technology arms race between attackers and defenders. However, this arm race is not fought in equal terms. Defenders are falling behind due to lack of resources coupled with an overwhelming number of sophisticated attacks, e.g. advanced persistent threats, making cyber defense extremely difficult. This is also due to the lack of collaboration among the network security solutions, e.g., intrusion detection systems and honeypots, which are in possession of different organizations across the globe.

In recent years, organizations like CERTs, NRENs, as well as industry organizations are moving towards proactive detection capabilities leveraging Cyber Threat Intelligence (CTI) platforms. These platforms aim at advanced alert aggregation, correlation, and prioritization considering the asset criticality of organizations as well as the quality of shared threat intelligence. The goal of CyberTIM is to bring the industry practitioners, researchers, engineers, and academic researchers together from the domain of network security, network measurements, cyber incident monitoring, trust & risk management, cyber situational awareness, security analytics, and security visualization.

Topics of interest include, but are not limited to

Network Intrusions
Cyber threat detection
Cyber threat prediction
End-to-End threat intelligence
Threat Intelligence sharing
Collaborative Intrusion Detection
Blockchain-based TI sharing
Cyber situational awareness
Cyber threat analytics
Cyber threat sharing community
Trust management in/for Cyber Threat Intelligence
Cyber threat visualization
Cyber threat monitoring

Botnet monitoring
Cyber threat correlation techniques
Cyber threat prioritization techniques
Cyber threat sharing platforms
Alert exchange formats
Alert exchange protocols
Cyber-crime forensics
Cyber-crime risk management
Incident response
Automotive threat intelligence (backend and on-board)
Automotive threat detection
Automotive threat sharing platforms
Automotive threat response

Important Dates
Submission Deadline May 15, 2021
New deadline May 25, 2021
Author Notification June 07, 2021
Proceedings Version July 13, 2021
All-Digital Conference August 17 – August 20, 2021
Steering Committee

Brian Lee, Athlone Institute of Technology, Ireland
Fabio Martinelli, IIT, C.N.R, Italy
Max Mühlhäuser, TU Darmstadt, Germany
Kim-Kwang Raymond Choo, The University of Texas at San Antonio, USA

Publicity Chair
Jason Nurse, University of Kent, UK

Workshop Chairs

Emmanouil Vasilomanolakis, Aalborg University, Denmark
Jassim Happa, Royal Holloway, University of London, UK
Sheikh Mahbub Habib, Continental AG, Germany

TPC Members 2021
  • Andrea Saracino, Consiglio Nazionale delle Ricerche, Italy
  • Andrea Tundis, TU Darmstadt, Germany
  • Daniel Fischer, U Ilmenau, Germany
  • Emmanouil Vasilomanolakis, Aalborg University, Denmark
  • Georgios Kambourakis, University of the Aegean, Greece
  • Jason Nurse, University of Kent, UK
  • Jassim Happa, Royal Holloway, University of London, UK
  • Jörg Daubert, Provadis School of International Management and Technology, Germany
  • Peter Amthor, Technische Universität Ilmenau, Germany
  • Reza M. Parizi, Kennesaw State University, USA
  • Shankar Karuppayah Universiti Sains Malaysia, Malaysia
  • Sheikh Mahbub Habib, Continental AG, Germany
Submission Guidelines

The submission guidelines can be found at https://www.ares-conference.eu/conference/submission/ (6-8 pages, a maximum of 10 pages is tolerated).
Double blind review: All papers submitted to EasyChair should be anonymized (no names or affiliations of authors should be visible in the paper) with no obvious self-references.
Submission of a paper implies that should the paper be accepted, at least one of the authors will register and present the paper in the workshop.
Proceedings will be published by ACM.

Keynote

CTI Then and Now -A perspective from the H2020 project PROTECTIVE and life thereafter

Dr Brian Lee, PROTECTIVE project coordinator

Abstract: In this talk we will review experiences from the PROTECTIVE project with regard to CTI sharing and the mechanics of running a project  pilot as well as lessons learned. In the second part of the talk, we will consider recent trends and developments in CTI sharing.

Dr. Brian Lee is the Director of the Software Research Institute in Athlone Institute of Technology in Ireland. He is an experienced researcher and manager having worked in industry and academia in network management and security for many years. His research interests are in data driven security, adaptive security, with particular application to enterprise and edge security.