ECX: The Data Correspondence Architecture

eCX’s data correspondence architecture serves the objective of mobilizing cybercrime machine event data of high reliability to the greatest degree possible in a purely voluntary exchange scenario. That incentivizing data exchange schema is framed in two important ways unique to APWG’s eCX clearance platform.

First, the eCX Data Sharing Agreement (DSA) establishes a best-efforts relationship between eCX users and the APWG to maximize the attention eCX users pay to data fidelity and categorization accuracy – without resorting to Service Level requirements that can make corporate counsel wary. The DSA strikes an important balance in that it non-coersively incentivizes accurate and complete data contributions.

At the same time. the eCX’s endogenous audit facility — allowing each submitted record with an explicitly marked confidence factor to to traced directly to an individual submitter — makes every contributing eCX user accountable by design for every data element that they submit to the clearinghouse — an important indirect incentive for users to attend to data accuracy and categorization fidelity in all their submissions.

In these elemental but crucial ways, eCX’s data correspondence architecture programatically procures high reliability data contributions at scale with an architecture that can be expanded to any conceivable degree in order to meet and confront the expansion of cybercrime’s ever expanding reach.