Название: Cybersecurity Test and Evaluation Guidebook 2.0
Автор: Department of Defense
Издательство: Independently published
Год: 2018
Страниц: 134
Формат: PDF
Размер: 10 Mb
Язык: English
The purpose of this updated guidebook is to promote data-driven mission-impact-based analysis and assessment methods for cybersecurity test and evaluation (T&E) and to support assessment of cybersecurity, survivability, and resilience within a mission context by encouraging planning for tighter integration with traditional system T&E. Cybersecurity T&E starts at acquisition initiation and continues throughout the entire life cycle. The guidebook supplements information provided in the Test and Evaluation Master Plan (TEMP) Guidebook. DoD’s computer networks have always been targeted for cyber-attacks and now that includes the building controls systems (BCS). Defending a BCS is not as simple at protecting an IT network because most BCS consist of analog equipment that is decades old and retrofit to accept commands from modern digital controllers. Many BCS installations are a hodgepodge of technologies that should have been replaced years ago. DoD is well ahead of industry in this area because DoD recognizes it’s a problem whereas most companies are blissfully unaware of their vulnerabilities.