Framework for Improving Critical Infrastructure Cybersecurity/ATT and CK Mapping

Abstract

The CSF is a risk-based approach to managing cybersecurity risk, and is composed of three parts: the Framework Core, the Framework Implementation Tiers, and the Framework Profiles. Each Framework component reinforces the connection between business/mission drivers and cybersecurity activities. This workbook maps elements of the Framework Core to the Enterprise tactics and techniques presented in ATT and CK. The mapping aligns the mitigation and detection guidance for ATT and CK techniques to Framework Core subcategories that support this guidance.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Nov 18, 2019
Accession Number
AD1114837

Entities

People

  • Thomas A Gregg

Organizations

  • MITRE Corporation

Tags

DTIC Thesaurus Topics

  • Abstracts
  • Availability
  • Classification
  • Contracts
  • Department Of Defense
  • Governments
  • Information Operations
  • Instructions
  • Law
  • Monitoring
  • National Governments
  • Security
  • Translations

Fields of Study

  • Computer science

Readers

  • Cybersecurity.
  • Organizational Process Management (OPM).
  • Systems Analysis and Design

Technology Areas

  • Cyber