A successful information sharing environment (ISE) requires active communities of interest (COI) to implement information sharing best practices. In the threat and risk arena, this involves a COI that brings together the mission focus for integrated threat along with risk management and situational awareness, and also combines standards, technologies, and capabilities. The Cross Domain Threat & Risk Information Exchange Day, hosted by the Object Management Group's GovDTF on March 23, facilitated the building of this robust COI to focus on multidimensional risks and threats. 

We feel there is no time better than present to discuss the issue of threat and risk information sharing across domains.  That said, domains mean different things to different communities. You may be looking at information sharing of threats and risk from an unclassified to classified (domain) perspective or your view is from a public to private sharing---across sectors (domains) and communities, or national to international (domains), including private to private, public, or citizens, in a federated way, to protect critical infrastructure, energy grid, intellectual property, as well as identify insider threats, and notifications to victims as necessary. Also, you may consider each having their own language(s), open, home-grown, and proprietary standards and technologies, unable to share across domains, and the private and public sector sharing represent real challenges in privacy laws, analytics of big data, national and international interest.  

Without a common vocabulary of meanings and terms, it’s unmanageable for analysts or systems to decipher to connect dots in a meaningful way.  Our effort is to develop a semantic relationship model/standard way, adopted by a federation of communities in private and public sectors, across different industries to provide real insights and situational awareness to first responders, cyber analyst centers, retail industry, and decision makers across domains.  This can be shared at different levels and with different audiences.  Our effort is technology-neutral, and language-agnostic, which makes this a real opportunity for vendors and consumers to get involved to solve a national crisis that is beyond the cybersecurity realm.

For more information or to learn how to get involved in the Cross Domain Threat & Risk initiative, connect with OMG team members Cory Casanave, cory@modeldriven.com, and Pamela J. Wise-Martinez, pamelaw@dni.gov.

News Source: 

Kshemendra Paul, ISE Program Manager