BAE System announced a new partnership with Japan’s Fujitsu to begin a Cyber Threat Intelligence (CTI) sharing system, BAE said Monday.
The new system is aimed at demonstrating to usefulness of international sharing of cyber threat information by using industry standards and open source tools as a means of improving an organization’s cyber defense.
The program was spurred by recent large-scale information thefts spurred legislation and policy calling on government and commercial organizations to share potential cyber threat intelligence to improve cyber defenses. The CTI tool is increasingly critical to this effort, BAE said.
The new CTI program in this partnership will enhance the company’s ability to provide universal protection across both the physical and virtual worlds for commercial and government customers, the company said.
“This partnership builds upon our strong working relationship with Fujitsu. As a team, we’re producing some of the most cutting-edge solutions to manage our customers’ defense and security needs, regardless of the industry,” Peder Jungck, chief technology officer (CTO) of BAE’s intelligence & security sector, said in a statement.
BAE highlighted it is using its CTI expertise in analysis and model-based software engineering to create a technology based on the internationally approved Structured Threat Information eXpression (STIX) and Trust Automated Exchange of Indicator Information (TAXII) standards.
The system will allow a secure, two-way exchange of CTI between BAE and Fujitsu as well as a model-based data protection framework that enforces sharing policies. This prevents private corporate data from being exchanged, BAE said.
In practice, cyber analysts at both companies can review sharing CTI, modify their security settings to their respective networks, and adjust what types of CTI they wish to share with partners.
The information sharing system is set to be completed at several locations in Tokyo, Japan and Northern Virginia.
BAE also noted Jim Keffer, a retired Air Force two-star general, joined the program as BAE subject matter expert to bring experience to the design and validation of CTI sharing. He is a former chief of staff of CYBERCOM.