Cyber Threat Intelligence (CTI) is operationable information about cyber threats. It needs to be collected, structured in a machine-interpretable way, exchanged, and used for automated analysis and decision making. All this needs to happen in cyber-relevant time, i.e. seconds.
Identity Management is a crucial enabler for the development of online services. The problem with current identity management is that the solutions are designed to be practical from the service providers' point of view. These solutions do not scale, and provide poor usability for service consumers. A local user-centric approach is needed to make online service provision scalable for all.
Trust & Reputation Management for open computer networks includes developing trust and reputation systems that can assist users and organisations in assessing the trustworthiness of resources and remote parties on the Internet. Subjective Logic is compatible with Bayesian reputation systems, which provides a simple and elegant way of combining reputation systems with belief and trust reasoning.
Network Security has different aspects such as communications and telecommunications security, network perimeter defence, wired/wireless/mobile network security, network protocol security, or semantics/trust-level and end-user interaction security. The latter is often defined in terms of ceremomy where the human context is integrated into network security models.
Security Usability is a crucial but largely ignored element in the security chain. People are often the weakest link in the security chain of systems and applications. This weakness is often amplified by poor security usability which leads to serious security vulnerabilities that can be exploited by hackers and criminals. The importance of security usability was already pointed out by the Belgian cryptographer Kerckhoffs in 1883.
Subjective logic is a type of probabilistic logic where arguments can be affected by epistemic uncertainty and where subjective belief sources can be explicitly expressed. Subjective logic is suitable for modelling and analysing situations characterised by subjectivity and incomplete knowledge, e.g. for modelling trust networks and Bayesian networks. A rich set of operators makes subjective logic flexible and applicable for modelling and analysing practical situations.