Saved in:
Bibliographic Details
Main Authors: Peng, Wei, Ding, Junmei, Wang, Wei, Cui, Lei, Cai, Wei, Hao, Zhiyu, Yun, Xiaochun
Format: Preprint
Published: 2024
Subjects:
Online Access:https://arxiv.org/abs/2408.06576
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866913918017863680
author Peng, Wei
Ding, Junmei
Wang, Wei
Cui, Lei
Cai, Wei
Hao, Zhiyu
Yun, Xiaochun
author_facet Peng, Wei
Ding, Junmei
Wang, Wei
Cui, Lei
Cai, Wei
Hao, Zhiyu
Yun, Xiaochun
contents Cyber Threat Intelligence (CTI) summarization involves generating concise and accurate highlights from web intelligence data, which is critical for providing decision-makers with actionable insights to swiftly detect and respond to cyber threats in the cybersecurity domain. Despite that, the development of efficient techniques for summarizing CTI reports, comprising facts, analytical insights, attack processes, and more, has been hindered by the lack of suitable datasets. To address this gap, we introduce CTISum, a new benchmark dataset designed for the CTI summarization task. Recognizing the significance of understanding attack processes, we also propose a novel fine-grained subtask: attack process summarization, which aims to help defenders assess risks, identify security gaps, and uncover vulnerabilities. Specifically, a multi-stage annotation pipeline is designed to collect and annotate CTI data from diverse web sources, alongside a comprehensive benchmarking of CTISum using both extractive, abstractive and LLMs-based summarization methods. Experimental results reveal that current state-of-the-art models face significant challenges when applied to CTISum, highlighting that automatic summarization of CTI reports remains an open research problem. The code and example dataset can be made publicly available at https://github.com/pengwei-iie/CTISum.
format Preprint
id arxiv_https___arxiv_org_abs_2408_06576
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle CTISum: A New Benchmark Dataset For Cyber Threat Intelligence Summarization
Peng, Wei
Ding, Junmei
Wang, Wei
Cui, Lei
Cai, Wei
Hao, Zhiyu
Yun, Xiaochun
Computation and Language
Cyber Threat Intelligence (CTI) summarization involves generating concise and accurate highlights from web intelligence data, which is critical for providing decision-makers with actionable insights to swiftly detect and respond to cyber threats in the cybersecurity domain. Despite that, the development of efficient techniques for summarizing CTI reports, comprising facts, analytical insights, attack processes, and more, has been hindered by the lack of suitable datasets. To address this gap, we introduce CTISum, a new benchmark dataset designed for the CTI summarization task. Recognizing the significance of understanding attack processes, we also propose a novel fine-grained subtask: attack process summarization, which aims to help defenders assess risks, identify security gaps, and uncover vulnerabilities. Specifically, a multi-stage annotation pipeline is designed to collect and annotate CTI data from diverse web sources, alongside a comprehensive benchmarking of CTISum using both extractive, abstractive and LLMs-based summarization methods. Experimental results reveal that current state-of-the-art models face significant challenges when applied to CTISum, highlighting that automatic summarization of CTI reports remains an open research problem. The code and example dataset can be made publicly available at https://github.com/pengwei-iie/CTISum.
title CTISum: A New Benchmark Dataset For Cyber Threat Intelligence Summarization
topic Computation and Language
url https://arxiv.org/abs/2408.06576