Framework for Improving Critical Infrastructure Cybersecurity/ATT and CK  Mapping

Gregg, Thomas A

Framework for Improving Critical Infrastructure Cybersecurity/ATT and CK Mapping

Active / Technical Report | Accession Number: AD1114837 |

Open PDF

Abstract:

The CSF is a risk-based approach to managing cybersecurity risk, and is composed of three parts the Framework Core, the Framework Implementation Tiers, and the Framework Profiles. Each Framework component reinforces the connection between businessmission drivers and cybersecurity activities. This workbook maps elements of the Framework Core to the Enterprise tactics and techniques presented in ATT and CK. The mapping aligns the mitigation and detection guidance for ATT and CK techniques to Framework Core subcategories that support this guidance.

Author(s):

Gregg, Thomas A

Author Organization(s):

The MITRE Corporation McLean United States

Descriptive Note:

Technical Report

Supplementary Note:

01 Jan 0001, 01 Jan 0001, Report attached as Excel spreadsheet.

Pagination:

0002

Security Markings

DOCUMENT & CONTEXTUAL SUMMARY

Distribution:

Approved For Public Release

Distribution Statement:

Approved For Public Release;

RECORD

Collection: TR

Identifying Numbers

Report Number(s):

NGA

Contract/Grant Number(s):

W56KGU-18-D-0004

Subject Terms

Joint Capability Areas:

JCA_8_Building Partnerships

Communities of Interest:

No COI(s) Identified

Report Date:

2019 Nov 18

Creation Date:

2020 Nov 25