Cyber-attack and defense frameworks offer numerous ways to protect systems and networks from threats. However, only a few of these numerous attack and defense frameworks provide countermeasures by linking multiple frameworks. Due to the lack of attack-defense mapped frameworks, a number of cyber security practitioners are often puzzled how to cope with cyber-attacks when it occurs. The objective of this paper is to present a tool called the “Cyber Threat Dictionary” to solve the problem . Cyber Threat Dictionary offers approaches and practical solutions to the threats by mapping MITRE ATT&CK Matrix to the NIST Cybersecurity Framework. By providing immediate solutions to cyber security practitioners, Cyber Threat Dictionary enables effective responses against cyber-attacks.
Revised: December 8, 2020 |
Published: November 2, 2020
Citation
Kwon R., T.D. Ashley, J.E. Castleberry, P.L. McKenzie, and S.G. Gourisetti. 2020.Cyber Threat Dictionary Using MITRE ATT&CK Matrix and NIST Cybersecurity Framework Mapping. In IEEE Resilience Week (RWS 2020), October 19-23, 2020, Salt Lake City, UT, 106-112. Piscataway, New Jersey:IEEE.PNNL-SA-154130.doi:10.1109/RWS50334.2020.9241271