Sunday, July 20, 2025
LBNN
  • Business
  • Markets
  • Politics
  • Crypto
  • Finance
  • Energy
  • Technology
  • Taxes
  • Creator Economy
  • Wealth Management
  • Documentaries
No Result
View All Result
LBNN

Standardized security playbooks can improve protection against cyberattacks

Simon Osuji by Simon Osuji
March 31, 2025
in Artificial Intelligence
0
Standardized security playbooks can improve protection against cyberattacks
0
SHARES
0
VIEWS
Share on FacebookShare on Twitter


Standardized security playbooks improve protection against cyberattacks
Improved protection against cyberattacks: In the CyberGuard project, an AI-based approach converts manually written playbooks into machine-readable ones that can be shared and automated. Credit: Fraunhofer-Gesellschaft

One attack, many responses—organizations use various solutions to ward off online attacks. The playbooks that outline countermeasures also vary in their specifics. In the CyberGuard project, Fraunhofer researchers are working on standardized playbooks to help companies optimize their security strategies and align them with each other. The playbooks are generated by large language models and support the automation of IT security.

Related posts

The Ultimate Dolby Atmos Experience Might Be In Your Car

The Ultimate Dolby Atmos Experience Might Be In Your Car

July 20, 2025
Edge AI: Navigating Hardware Constraints

Edge AI: Navigating Hardware Constraints

July 20, 2025

Those responsible for IT security at companies and other organizations outline the defensive measures to counter cyberattacks in documents called playbooks. These documents serve as guides to what to do in case of a cyberattack, such as if an email contains a Trojan, a laptop is infected with malware or the organization’s website is attacked.

So far, each company has relied on its own security concepts and devised its playbooks individually. This means hardly any security-related information is shared between these organizations. And that is a problem, especially when business partners regularly exchange data, as is the case with industrial firms and their suppliers.

With that in mind, a team of researchers from the Fraunhofer Institute for Applied Information Technology FIT embarked on the CyberGuard project to build a standardized framework to ward off attacks. The project’s centerpiece is a set of standardized playbooks containing machine-readable process descriptions.

In terms of standards, the researchers are relying on the Collaborative Automated Course of Action Operations (CACAO) open-source format from the Organization for the Advancement of Structured Information Standards (OASIS). The documents created using the CACAO standard are compatible with each other, so they can be shared freely between companies and organizations.

“This means even small businesses or start-ups that can’t afford a big IT security department can get playbooks to prepare for an emergency and protect themselves,” adds Mehdi Akbari Gurabi, a data protection and data sovereignty expert at Fraunhofer FIT.

Large language model generates playbooks

The first step is to convert the existing manually generated playbooks, which often exist in text or table format, into machine-readable documents. To do this, the Fraunhofer researchers are harnessing the capabilities of AI-based large language models (LLMs). The LLM analyzes the texts written by employees in natural language and converts them to the machine-readable CACAO format.

The finished playbooks and the valuable security expertise they contain can be shared with customers or business partners as needed, for example via protected trustworthy platforms. Internal data is left out. “For sharing purposes, the machine-readable step-by-step instructions are worded so abstractly that internal information simply doesn’t appear, including file or drive names,” Akbari Gurabi explains.

Cyberattacks are constantly evolving and becoming more and more refined. That is why Akbari Gurabi and his team of Fraunhofer researchers plan to empower the AI to learn on its own going forward. If a new version of an attack emerges, for example, the AI will update and optimize the relevant playbook based on the existing expertise. The virtual security expert is not left unsupervised in the process, though.

Akbari Gurabi explains, “Mistakes are unacceptable in IT security. That’s why CyberGuard involves a stage in which IT managers review the AI-generated machine-readable documents and make sure all the steps make sense.”

Automated processes

The security experts at Fraunhofer FIT are also working to automate the steps defined in the playbooks. Once that is done, the IT system could do things like immediately take action if the intrusion detection system identifies an attack. This eases the burden on IT personnel while also accelerating the response to attacks.

The CyberGuard architecture and the additional research projects based on it promise a wide range of advantages for companies and other organizations. Jointly maintained playbooks allow for optimized responses to attacks by cybercriminals and hackers. Automated workflows accelerate responses and ease the burden on security experts. Business operations are more effectively protected against disruptions. And finally, even small businesses and start-ups gain access to high-quality, professional security solutions.

Provided by
Fraunhofer-Gesellschaft

Citation:
Standardized security playbooks can improve protection against cyberattacks (2025, March 31)
retrieved 31 March 2025
from https://techxplore.com/news/2025-03-standardized-playbooks-cyberattacks.html

This document is subject to copyright. Apart from any fair dealing for the purpose of private study or research, no
part may be reproduced without the written permission. The content is provided for information purposes only.





Source link

Previous Post

Pi Coin’s Price in April 2025: Can It Reach $3.94?

Next Post

Indra Leads Groundbreaking European Initiative

Next Post
Indra Leads Groundbreaking European Initiative

Indra Leads Groundbreaking European Initiative

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

RECOMMENDED NEWS

Financial inclusion for women in Africa still a challenge

Financial inclusion for women in Africa still a challenge

6 months ago
Gensler ‘Likes’ Lack of Clarity

Coinbase is Confident Spot Bitcoin ETF Will Be Approved by SEC

2 years ago
Twiga lays off 33% of its staff, disbands in-house delivery and introduces logistics marketplace

Twiga lays off 33% of its staff, disbands in-house delivery and introduces logistics marketplace

2 years ago
Foreign interference in U.S. elections isn’t old news

Foreign interference in U.S. elections isn’t old news

1 year ago

POPULAR NEWS

  • Ghana to build three oil refineries, five petrochemical plants in energy sector overhaul

    Ghana to build three oil refineries, five petrochemical plants in energy sector overhaul

    0 shares
    Share 0 Tweet 0
  • When Will SHIB Reach $1? Here’s What ChatGPT Says

    0 shares
    Share 0 Tweet 0
  • The world’s top 10 most valuable car brands in 2025

    0 shares
    Share 0 Tweet 0
  • Top 10 African countries with the highest GDP per capita in 2025

    0 shares
    Share 0 Tweet 0
  • Tanzania’s natural gas sector goes global with Dubai deal

    0 shares
    Share 0 Tweet 0
  • Privacy Policy
  • Contact

© 2023 LBNN - All rights reserved.

No Result
View All Result
  • Home
  • Business
  • Politics
  • Markets
  • Crypto
  • Economics
    • Manufacturing
    • Real Estate
    • Infrastructure
  • Finance
  • Energy
  • Creator Economy
  • Wealth Management
  • Taxes
  • Telecoms
  • Military & Defense
  • Careers
  • Technology
  • Artificial Intelligence
  • Investigative journalism
  • Art & Culture
  • Documentaries
  • Quizzes
    • Enneagram quiz
  • Newsletters
    • LBNN Newsletter
    • Divergent Capitalist

© 2023 LBNN - All rights reserved.