NIST Cybersecurity & Privacy cover art

NIST Cybersecurity & Privacy

Joint Cybersecurity Advisory - Ransomware - Is Cyber Deterrence Possible

Preview

£0.00 for first 30 days

Try for £0.00
Pick 1 audiobook a month from our unmatched collection - including bestsellers and new releases.
Listen all you want to thousands of included audiobooks, Originals, celeb exclusives, and podcasts.
Access exclusive sales and deals.
£7.99/month after 30 days. Renews automatically. See here for eligibility.

NIST Cybersecurity & Privacy

By: NIST - FBI - CISA - US Department of Justice
Narrated by: Tom Brooks
Try for £0.00

£7.99/month after 30 days. Renews automatically. See here for eligibility.

Buy Now for £11.99

Buy Now for £11.99

Confirm Purchase
Pay using card ending in
By completing your purchase, you agree to Audible's Conditions of Use and authorise Audible to charge your designated card or any other card on file. Please see our Privacy Notice, Cookies Notice and Interest-based Ads Notice.
Cancel

About this listen

The National Institute of Standards and Technology (NIST) develops cybersecurity standards, guidelines, best practices, and other resources to meet the needs of US industry, federal agencies, and the broader public. Our work ranges from specific information that can be put into practice immediately to longer-term research that anticipates advances in technologies and future challenges.

As part of our efforts to cultivate trust in information, systems, and technologies and to help organizations measure and manage risk, we carry out cybersecurity assignments defined by federal statutes, executive orders, and policies, including developing cybersecurity standards and guidelines for federal agencies.

Indicators of suspicious activity that threat hunters should look for include:

  • Unusual inbound and outbound network traffic,
  • Compromise of administrator privileges or escalation of the permissions on an account,
  • Theft of login and password credentials,
  • Substantial increase in database read volume,
  • Geographical irregularities in access and log in patterns,
  • Attempted user activity during anomalous logon times,
  • Attempts to access folders on a server that are not linked to the HTML within the pages of the
    web server, and
  • Baseline deviations in the type of outbound encrypted traffic since advanced persistent threat
    actors frequently encrypt exfiltration.

The United States’ reliance on networked systems and the high costs associated with cyber attacks have led many leaders in the US government and the Department of Defense (DOD) to prioritize protecting our critical networked infrastructure. Part of that focus is trying to develop a strategy for deterring adversaries from attacking our networks in the first place. This effort has led to much debate around the question of whether cyber deterrence is possible.

Answering this question is difficult since the number of adversary groups capable of attacking US networks is large and our ability to deter each group will vary based on its motives and levels of risk tolerance. The United States should not expect a cyber deterrence strategy to achieve the kind of results seen with our nuclear deterrence strategy during the Cold War. However, a limited US cyber deterrence strategy is possible. To be effective, this strategy must be multilayered and use all instruments of US national power. The strategy employed against one adversary group (e.g., criminal actors) will be different than that against another group (e.g., state or state-sponsored actors).

This paper explores (1) the difficulties of deterring unwanted cyber activities by each group of cyber threats, (2) realistic expectations for a deterrence strategy, and (3) proposals to help mitigate the problems.

©2021 Tom Brooks (P)2021 Tom Brooks
Security & Encryption Hacking Computer Security
activate_Holiday_promo_in_buybox_DT_T2

Listeners also enjoyed...

Cybersecurity cover art
Cyber Intelligence Driven Risk cover art
Introduction to Cyber Security: Fundamentals cover art
Zero Trust and Third-Party Risk cover art
Navigating New Cyber Risks cover art
A Vulnerable System cover art
Cybersecurity cover art
The Hacked World Order cover art
Cyber Essentials cover art
Digital Resilience cover art
Cyber Security cover art
Understanding Cyber Conflict: 14 Analogies cover art
You'll See This Message When It Is Too Late cover art
Black Code cover art
Essential CISA Exam Guide: Updated for the 26th Edition cover art
Virtual Terror: 21st Century Cyber Warfare cover art

What listeners say about NIST Cybersecurity & Privacy

Average customer ratings

Reviews - Please select the tabs below to change the source of reviews.