Challenges and Opportunities of Blockchain for Cyber Threat Intelligence Sharing

TL;DR

This paper explores how blockchain technology can enhance cyber threat intelligence sharing by addressing current limitations of centralized platforms, emphasizing security, decentralization, and efficiency.

Contribution

It evaluates the potential of blockchain to overcome challenges in existing CTI sharing systems and discusses future research directions in this area.

Findings

Blockchain can improve security and decentralization in CTI sharing.

Current solutions are mostly centralized and lack distributed exchange.

Future research questions include scalability and interoperability challenges.

Abstract

The emergence of the Internet of Things (IoT) technology has caused a powerful transition in the cyber threat landscape. As a result, organisations have had to find new ways to better manage the risks associated with their infrastructure. In response, a significant amount of research has focused on developing efficient Cyber Threat Intelligence (CTI) sharing platforms. However, most existing solutions are highly centralised and do not provide a way to exchange information in a distributed way. In this chapter, we subsequently seek to evaluate how blockchain technology can be used to address a number of limitations present in existing CTI sharing platforms. To determine the role of blockchain-based sharing moving forward, we present a number of general CTI sharing challenges, and discuss how blockchain can bring opportunities to address these challenges in a secure and efficient manner. Finally, we discuss a list of relevant works and note some unique future research questions.