“With information sharing, there are three key characteristics: volume (lots of indicators), velocity (speed of sharing), and validation. Unfortunately, you can only ever get two out of three. In this case, the NCCIC has heard from you that you want a lot of information from the government, and you want it as soon as it is discovered, so AIS focuses on volume and velocity. Moreover, you will validate the indicators yourselves anyway, so you do not need the delay of DHS also validating them. That being said, when the government has useful information about an indicator, the NCCIC will assign a risk score to provide context to our customers.”
Source: Advancing cybersecurity through automated indicator sharing | CSO Online
