There's a new Draft for Comments available on the NIST website of a publication entitled Systems Security Engineering: Cyber Resiliency Considerations for the Engineering of Trustworthy Secure Systems:
https://csrc.nist.gov/publications/detail/sp/800-160/vol-2/draft
You can download the PDF file from the above page. Quoting from the announcement:
"Certain types of advanced threats have the capability to breach our critical systems, establish a presence within those systems (often undetected), and inflict immediate and long-term damage to the economic and national security interests of the Nation."
I think we need to take these threats seriously and ensure that the systems under our control are as secure as we can make them. The publication itself quotes Carl Landwehr in the February 2015 issue of Communications of the ACM:
"This whole economic boom in cybersecurity seems largely to be a consequence of poor engineering."
Be careful out there!
Ken
https://csrc.nist.gov/publications/detail/sp/800-160/vol-2/draft
You can download the PDF file from the above page. Quoting from the announcement:
"Certain types of advanced threats have the capability to breach our critical systems, establish a presence within those systems (often undetected), and inflict immediate and long-term damage to the economic and national security interests of the Nation."
I think we need to take these threats seriously and ensure that the systems under our control are as secure as we can make them. The publication itself quotes Carl Landwehr in the February 2015 issue of Communications of the ACM:
"This whole economic boom in cybersecurity seems largely to be a consequence of poor engineering."
Be careful out there!
Ken