Enhanced Cyber Threat Model for Financial Services Sector (FSS) Institutions: Threat Model ATT and CK/CAPEC Version
Abstract
The Department of Homeland Security (DHS) Science and Technology Directorate (S and T) Next Generation Cyber Infrastructure (NGCI) Apex program is seeking to integrate innovative cyber technologies into use in the Financial Services Sector (FSS). As part of the NGCI Apex program, The Homeland Security Systems Engineering and Development Institute (HSSEDI) is developing a cyber threat model for FSS institutions. The NGCI Apex program will use threat modeling and cyber wargaming to inform the development and evaluation of risk metrics, technology foraging, and the evaluation of how identified technologies could decrease risks. The threat model is intended both to support NGCI Apex use cases and to provide a common, consistent frame of reference for community interaction, supplementing institution-specific threat models maintained internally within individual institutions. HSSEDI previously developed and populated a high-level framework and high-level threat model tailored to the FSS. In this report, the high-level model is expanded into a more detailed threat model, reflecting attacker methods at a level relevant to implementation with respect to a generic FSS institution. Attacker methods are drawn from MITRE and cyber defense community sources including Adversary Tactics Techniques and Common Knowledge (ATT and CK), ATT and CK for Left of Exploit (PRE-ATT and CK), and Common Attack Pattern Enumeration and Classification (CAPEC).
Document Details
- Document Type
- Technical Report
- Publication Date
- Jun 28, 2018
- Accession Number
- AD1108017
Entities
People
- Catherine D. Mccollum
- Clement W. Skorupka
- David B. Fox
- Deborah J. Bodeau
- Eric I. Arnoth
Organizations
- MITRE Corporation