Accession Number : AD1049123


Title :   Cybersecurity Assessment Parameter Profile (CAPP). A Tool for Making Sense of Cybersecurity Assessments


Descriptive Note : Technical Report,01 Oct 2017,01 Mar 2018


Corporate Author : NAVAL SURFACE WARFARE CENTER CRANE DIV IN CRANE United States


Personal Author(s) : Russell, Scott L ; Jackson,Steven C


Full Text : http://www.dtic.mil/dtic/tr/fulltext/u2/1049123.pdf


Report Date : 28 Mar 2018


Pagination or Media Count : 34


Abstract : This paper seeks to answer three core questions: How can decision makers (1) identify the salient differences between existing cybersecurity assessments; (2) select the most appropriate cybersecurity assessments for their missions, resources, and constraints; and (3) find and fill gaps in the cybersecurity assessment ecosystem? The framework uses a cohesive set of eight parameters to characterize cybersecurity assessments, and introduces the Cybersecurity Assessment Parameters Profile (CAPP) tool, which aids decision makers in applying the parameters to cybersecurity assessments. Each parameter is a non-categorical spectrum, whose extremes offer both utility and limitations. Each parameter offers a meaningful choice for cybersecurity decision makers, as every parameter value is desirable for some assessment scenario.


Descriptors :   computer security , computer security techniques , technical standards , standardization , METHODOLOGY


Subject Categories : Computer Systems Management and Standards


Distribution Statement : APPROVED FOR PUBLIC RELEASE