Enabling Enterprise Resilience through Security Automation ...

More documents

Recommendations

Info

SwA & SCRM ImperativeIncreased risk from supply chain due to:• Increasing dependence on commercial ICT formission critical systems• Increasing reliance on globally-sourced IThardware, software, and services• Varying levels of development & outsourcing controls• Lack of transparency• Residual risk passed to end-user enterprise• Counterfeit products• Tainted products with malware, exploitable weaknessesand vulnerabilities• Growing technological sophistication among ouradversaries• Internet enables adversaries to probe, penetrate, andattack us remotely• Supply chain attacks can exploit products & processes<strong>through</strong>out the lifecycle
Page 1 and 2: Software & Supply Chain Assurance:E
Page 3: ICT Supply Chain ExploitationToward
Page 7 and 8: Econ. Dev.Impact SCRM OpsUSG Capabi
Page 9 and 10: (1) A Common Language for SC Exploi
Page 11 and 12: (2) Countermeasure PrioritizationSe
Page 13 and 14: | 16 |(3) Need Measured, Phased App
Page 15 and 16: SCRM StrategyUS-CERTNCCIC NCIXI&ADO
Page 17 and 18: (3) Need Measured, Phased ApproachA
Page 19 and 20: Term Definitions■ NIST IR 7622- I
Page 21 and 22: Next SwA WG 25-27 June 2013 at MITR
Page 23 and 24: | 28 |A New Paradigm Presents a Pro
Page 25 and 26: Interdependencies Between Physical

Enabling Enterprise Resilience through Security Automation ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?