Download Publication

Improving Metrics in Cyber Resiliency
Release Date: 08/30/2017
Cyber resiliency is important as it gives us “the ability to prepare and plan for, absorb, recover from, or more successfully adapt to actual or potential adverse effects.” Despite billions of dollars being spent on cybersecurity, information systems data breaches are increasing year after year. To reverse this trend, it is essential to develop metrics and processes to measure (1) threats before they become cyberattacks, (2) recovery of lost functionality after a cyberattack. This paper introduces two essential metrics: Elapsed Time to Identify Failure (ETIF) and Elapsed Time to Identify Threat (ETIT). Measuring them and developing processes to lower the values of ETIF and ETIT would improve the resiliency of an information system.
Please fix this information in the form:
{{ error }}×
Fill out this form to access this resource.
In my current job I work in:
Can we send you emails about other CSA projects?
By opting into this agreement I am indicating that I want to receive email updates from CSA on related projects. (Marketing purposes, Section 3 of the Privacy Policy).
Can we send you emails about other CSA projects?
By opting into this agreement I am indicating that I want to receive email updates from CSA on related projects. (Marketing purposes, Section 3 of the Privacy Policy).
Provide feedback on this form
Are you a research volunteer? Request to have your profile displayed on the website here.