This paper updates MITRE’s Cyber Resiliency Engineering Framework and provides information that systems engineers and architects can use when deciding which cyber resiliency techniques to apply.
Cyber Resiliency Engineering Aid—The Updated Cyber Resiliency Engineering Framework and Guidance on Applying Cyber Resiliency Techniques
Cyber resiliency is the ability of cyber systems and cyber-dependent missions to anticipate, continue to operate correctly in the face of, recover from, and evolve to better adapt to advanced cyber threats. This paper updates MITRE’s Cyber Resiliency Engineering Framework (2011) and provides information that systems engineers and architects can use when deciding which cyber resiliency techniques to apply. Specifically, it identifies potential interactions (e.g., dependencies, synergies, conflicts) between techniques, depending on the implementation approach. It identifies potential effects that implementations of cyber resiliency techniques could have on adversary activities throughout different stages in the cyber attack lifecycle. It also includes provisional information on relative maturity and ease of adoption for representative approaches to implementing cyber resiliency techniques.