The main objective of the research project is to develop a platform for cyber threat intelligence to uncover cyberattacks, cyber espionage and sabotage. The project will result in new methods for data enrichment and data analysis to enable identification of threat actors, their motives, resources and attack methodologies. In addition, the project will develop new methods, work processes and mechanisms for the generation and distribution of threat intelligence and countermeasures, to stop ongoing and prevent future attacks.

The project Semi-Automated Cyber Threat Intelligence is a project in cooperation between mnemonic and:

• The University of Oslo
• The Norwegian University of Science and Technology (NTNU) at Gjøvik
• The Norwegian National Security Authority (NSM)
• FinansCERT
• KraftCERT

Results

The project will result in a unique platform and associated tools and services for digital threat intelligence, for use in both public sector and private companies. The ultimate goal for the project is to set a new international standard for cybersecurity, which for the first time can predict cybercrime. The majority of today’s security breaches are detected at late stages or have already been completed. The project aims to make it possible to act much earlier, even before an attack is launched. In addition, the platform should make it possible to categorize various attackers and their modus operandi, and to identify the attackers and collect evidence enabling prosecutions.

 The project does also interface with the project “Oslo Analytics” at the University of Oslo, Norway. The goal of the Oslo Analytics project is to develop solutions for holistic analysis of cybersecurity incidents.

Research and development

With more than 10% of our total man-hours invested into R&D, we are devoted to progressing cybersecurity and protecting the digital world. More information about our research projects are available here: Research and Development.