11 Matching Annotations
  1. Apr 2024
  2. www.mitre.org www.mitre.org
    Cyber Security Metrics Catalog
    6
    1. calvinworst 17 Apr 2024
      promulgation

      noun

      the act of making a law or decree known, or formally putting it into effect, by public declaration: Upon adoption, signing, and promulgation of these provisions in the established procedure, they acquire the power of law.

      the act of publicly teaching or setting forth an idea, doctrine, etc.: The systematic study of parasites began with the promulgation of the germ theory.

    2. calvinworst 17 Apr 2024
      metric descriptor

      Short phrase describing what the metric does and what it measures

    3. calvinworst 17 Apr 2024
      Similarly, a few metrics in thecatalog were defined from the cyber resiliency design principles

      ST-#-#

      ST: structural design principle metric first number is number of said design principle

    4. calvinworst 17 Apr 2024
      A few metrics in the catalog were defined from cyber resiliency techniques and approaches.These have identifiers of the form TE-AP-#

      TE-AP-#

      TE: technique AP: approach #: number assignment

    5. calvinworst 17 Apr 2024
      metric identifier

      generally formatted as: OO-S#-A#-# ex. PA-S1-A2-2

      OO: any one of the cyber resiliency objectives; A for Prevent/Avoid, PR for Prepare, CN for Continue, CS for Constrain, RE for Reconstitute, UN for Understand, TR for Transform, and RA for Re-Architect.

      S# and A# are the sub objective and activity, respectively

      The last space is to assign a number to the objective

    6. calvinworst 17 Apr 2024

      catalog entries include information about cyber resilient TTP's and accompanying information about them

    Visit annotations in context

    Annotators

    URL

    mitre.org/sites/default/files/2021-11/pr-18-3376-cyber-resiliency-metrics-catalog.pdf
  3. Local file Local file
    Cyber Resiliency Design Principles
    4
    1. calvinworst 09 Apr 2024
      Finally,depending on how an organization has defined or articulated its risk management strategy, the selectionand tailoring of cyber resiliency design principles can be driven by that strategy.

      design principles are driven by organization goals and risk management strategy

    2. calvinworst 09 Apr 2024
      Representative environmental factors

      determine which design principles are used, how to use them for the target environment, and how to describe said design principles

    3. calvinworst 09 Apr 2024
      Re-Architect is supported by most of the strategic design principles, and (inconjunction with the organization’s risk management strategy) drives the selection of structural designprinciples

      re-architect is supported by strategic design principles and drives structural design principles

    4. calvinworst 09 Apr 2024
      Prepare involves creating and maintaining aset of realistic courses of action, which are based on the architecture, design, and implementation, ratherthan driving them.

      Prepare comes as a result of arch, des, and impl

    Annotators

  4. Local file Local file
    Cyber Resilience Framework for Industrial Control Systems: Concepts, Metrics, and Insights
    1
    1. calvinworst 09 Apr 2024
      Most of these frameworks provide somesubjective guidance from different angels of resilience studyand lack of clear explanation on the quantitative resiliencemetrics formulation

      reason for this paper

    Annotators