New cyber-security open-source technology launched by CS-AWARE EU project

The Oulu University Secure Programming Group is partner in the project that has launched as open source the STIX 2.0 specification implementation in Gson/Java. STIX (Structured Threat Information Expression) is a structured language for describing cyber threat information so it can be shared, stored, and analyzed in a consistent manner. [3] CS-AWARE project [1] is an EU H2020 [2] funded project focusing on cyber-security situational awareness.

The Oulu University Secure Programming Group is partner in the project that has launched as open source the STIX 2.0 specification implementation in Gson/Java. STIX (Structured Threat Information Expression) is a structured language for describing cyber threat information so it can be shared, stored, and analyzed in a consistent manner. [3] CS-AWARE project [1] is an EU H2020 [2] funded project focusing on cyber-security situational awareness.

CS-AWARE project aims to produce be a simple and cost effective cyber-security awareness solution that helps administrators to understand the cyber-security situation within their systems. The solution relies heavily on cooperative cyber-security, by utilizing information about problems that others have shared in order to detect and mitigate incidents within one’s own systems. There are 13 EU partners [4] that make the project consortium from Finland, Austria, Germany, UK, Italy, Denmark, Ireland, Greece and Netherlands.

CS-AWARE is a holistic cyber-security awareness solution aimed at local public administrations, non-governmental organizations and small and medium enterprises to protect against and detect attacks as well as offering sound and realizable solutions by:

  • automatic incident detection and visualization,
  • information exchange with national and EU-level NIS authorities,
  • system self-healing, and
  • multi-lingual semantic support.

The STIX 2.0 GSon/Java open source can be downloaded from Github under the BSD-3-clause license [7].

This open source java library addresses specifically to the cyber-security community and has been designed with a generic use purpose in mind for anyone that requires the use of the latest STIX2.0 specification [5]. The library implements parts 1 to 5 of the STIX 2.0 specification [6].

References

[1] CS-AWARE project webpage: https://cs-aware.eu/

[2] https://ec.europa.eu/programmes/horizon2020/

[3] STIX 2.0 https://oasis-open.github.io/cti-documentation/stix/intro

[4] CS-AWARE project partners: https://cs-aware.eu/project-partners/

[5] STIX 2.0 specification: https://www.oasis-open.org/committees/download.php/58538/STIX2.0-Draft1…"

[6] https://oasis-open.github.io/cti-documentation/resources#stix-20-specif…

[7] https://github.com/cs-aware/stix2

Title image: https://pixabay.com/en/hacking-cybercrime-cybersecurity-3112539/

Last updated: 8.4.2021