Some people may know what these information sharing initiatives are for. Some participate, but most don’t.
If cyber threat information sharing is so important, why doesn’t every organization in the world participate in some way?
- It’s not easy. It requires skills that many organizations don’t have.
- It takes time. Many organizations are not staffed to support these efforts.
- It’s perceived as risky. There are legal concerns. What good can come from sharing sensitive information with a broad audience? (And, the promise of anonymized data doesn’t carry the day for many people.)
Conceptually, cyber threat information sharing makes great sense. Practically speaking it’s not ready for prime time for most organizations.