Cybersecurity Assessment Parameter Profile (CAPP). A Tool for Making Sense of Cybersecurity Assessments
Technical Report,01 Oct 2017,01 Mar 2018
NAVAL SURFACE WARFARE CENTER CRANE DIV IN CRANE United States
Pagination or Media Count:
This paper seeks to answer three core questions How can decision makers 1 identify the salient differences between existing cybersecurity assessments 2 select the most appropriate cybersecurity assessments for their missions, resources, and constraints and 3 find and fill gaps in the cybersecurity assessment ecosystem The framework uses a cohesive set of eight parameters to characterize cybersecurity assessments, and introduces the Cybersecurity Assessment Parameters Profile CAPP tool, which aids decision makers in applying the parameters to cybersecurity assessments. Each parameter is a non-categorical spectrum, whose extremes offer both utility and limitations. Each parameter offers a meaningful choice for cybersecurity decision makers, as every parameter value is desirable for some assessment scenario.
- Computer Systems Management and Standards