Researchers at the Massachusetts Institute of Technology (MIT) have developed the Secure Cyber Risk Aggregation and Measurement (SCRAM) program to help organisations learn from past cyberattacks without exposing data to competitors or any reputational damages. This is so security professionals can gain insight into what went wrong without worrying that the data could be breached if the information is sent to a third-party.
“In the past, the only way to aggregate and share information about cyber attacks was through a trusted third party,” explained the students, economists, cryptography and internet policy experts who worked on this project under the auspices of MIT’s Computer Science and Artificial Intelligence Lab (CSAIL).