Using Causal Models to Manage the Cyber Threat to C2 Agility: Working with the Benefit of Hindsight
Abstract
The effectiveness and agility of an operation can be compromised through impact of adversary cyber activity on performance of key assets. The agility of adversary activity demands focused and effective investment in cyber security: there is a need for strong awareness of the military impact of threat vectors within the mission landscape, such that cyber security can be managed through a balanced, measurable, mission-driven process. With insight into the landscape and potential impact on mission outcomes, decision makers in the capability acquisition or mission control space can make informed decisions and interventions; and hence can plan and act proactively and with agility, rather than reacting to events. MooD International has been working with Dstl to develop a causal modelling approach to support the mission commander in taking appropriate action in the face of overwhelming amounts of data that may be associated with cyber events. The approach projects likely consequences of cyber events by exploiting a cyber kill-chain concept, embedded in a model that aligns capabilities and components of the mission landscape. The approach has been applied as the engine for an interactive cyber-security situational awareness and decision environment for the mission commander, supporting impact analysis and exploration of alternative interventions.
Document Details
- Document Type
- Technical Report
- Publication Date
- Jun 01, 2014
- Accession Number
- ADA607000
Entities
People
- A. Barnett
- Richard P. Whittington
- Scott Smith
Organizations
- Defence Science and Technology Laboratory