Standards

Standards Group  

Standards Group Charter 

The ACDA Standards Group will work to extend existing security and legal frameworks to incorporate active cyber defence counter measures.

Current Tasks

            • Current cybersecurity control frameworks (such as the NIST Cybersecurity Framework) do not accommodate easily the capabilities identified in MITRE ATT&CK, Engage and Caldera. Further, built into the philosophy of these frameworks, is the concept of a static and passive defence.  
            • The current work aims to:
              • Prepare a submission to MITRE to augment the MITRE Engage framework and potentially propose an integrated framework encompassing MITRE ATT&CK, Engage and Caldera.

              • Identify what changes are required in the NIST CSF to enable a tactical shift from passive to active defence.  This will seek to embed threat intelligence and tactics based on the MITRE frameworks into the controls design and capabilities of the organisation.
              • Facilitate incorporation of active cyber defence into cyber security standards, such as;
                  • NIST
                  • ISO 27000+
                  • ISM
                  • IEC 62443