This is a potential security issue, you are being redirected to https://csrc.nist.gov
Special Publications (SPs)
Security & Privacy
Laws & Regulations
Activities & Products
Computer Security Division
Applied Cybersecurity Division
Date Published: October 2016
Christopher Johnson (NIST), Mark Badger (NIST), David Waltermire (NIST), Julie Snyder (MITRE), Clem Skorupka (MITRE)
Cyber threat information is any information that can help an organization identify, assess, monitor, and respond to cyber threats. Cyber threat information includes indicators of compromise; tactics, techniques, and procedures used by threat actors; suggested actions to detect, contain, or prevent attacks; and the findings from the analyses of incidents. Organizations that share cyber threat information can improve their own security postures as well as those of other organizations.
This publication provides guidelines for establishing and participating in cyber threat information sharing relationships. This guidance helps organizations establish information sharing goals, identify cyber threat information sources, scope information sharing activities, develop rules that control the publication and distribution of threat information, engage with existing sharing communities, and make effective use of threat information in support of the organization’s overall cybersecurity practices.
System and Information Integrity;
SP 800-150 (DOI)
Related NIST Publications:
Draft SP 800-150 (4/21/16)SP 800-150 (10/4/16)
Security and Privacygeneral security & privacy; incident response; risk assessment; security automation; threats; vulnerability management