Book/Printed Material Cyber mission thread analysis : an implementation guide for process planning and execution
About this Item
Title
- Cyber mission thread analysis : an implementation guide for process planning and execution
Summary
- Cyber mission thread analysis (CMTA), which identifies mission-critical systems in a cyber threat environment, requires a disciplined, well-planned process for its execution. This report provides a proposed planning and implementation guide (1) to perform CMTA expeditiously while still giving results good enough to make decisions about mission criticality, and (2) to analyze multiple missions concurrently. The authors offer guidance on the roles and responsibilities of organizations and personnel involved in CMTA; the process for implementing the analysis and the types of preparations necessary for successful implementation; a rough timeline required to perform CMTA for one or more missions concurrently; and the possible constraints and issues that may be encountered. The authors draw on lessons learned from a pilot CMTA application, analogous Air Force efforts, and relevant social science methods for conducting interviews and focus groups. They highlight a number of key considerations, including two that are most critical: (1) Develop and execute a detailed plan. The number of stakeholders involved and desire for a swift timeline require a substantial coordination effort; and (2) Remember that the ultimate CMTA goal is triage. It is vital that any mission-critical system appear highly ranked; it is okay if some non-critical systems appear highly ranked. This goal ensures discussions do not become unnecessarily detailed and results remain within scope. The analytical tasks to perform CMTA are covered in a separate, companion document-Cyber Mission Thread Analysis: A Prototype Framework for Assessing Impact to Missions from Cyber Attacks to Weapon Systems-that readers can consult.
Names
- Mayer, Lauren A., author
- Snyder, Don, 1962- author
- United States. Department of the Air Force
- Project Air Force (U.S.). Resource Management Program
- Rand Corporation
Created / Published
- Santa Monica, CA : RAND Project Air Force, [2022]
Contents
- Chapter One: Overview of the CMTA Implementation Guide -- Chapter Two: Phase One: Establishing CMTA Roles and Analysis Inputs -- Chapter Three: Phase Two: Planning the Analysis Process -- Chapter Four: Phase Three: Conducting the Analysis -- Chapter Five: Adopting CMTA Process Efficiencies -- Chapter Six: Final Thoughts and Next Steps -- Appendix A: Further Considerations for Conducting SME Elicitations -- Appendix B: CMTA Analyst Team Checklist.
Headings
- - United States.--Air Force--Computer networks--Security measures
- - United States.--Air Force--Information technology
- - United States.--Air Force--Planning
- - Cyberspace operations (Military science)
- - Cyberspace--Security measures--United States
- - Cyberterrorism--United States--Prevention
- - Information warfare--United States
Notes
- - "Prepared for the Department of the Air Force"
- - Minimal Level Cataloging Plus.
- - Title from PDF document (title page; viewed March 8, 2022)
- - Includes bibliographical references (pages 54-56).
- - Description based on print version record; resource not viewed.
- - Description from electronic resource.
Medium
- 1 electronic resource (xiii, 56 pages )
Call Number/Physical Location
- MLCM 2024/41378 (U)
Digital Id
Library of Congress Control Number
- 2024739146
Rights Advisory
- This is non-restricted, fully open content that may be accessed on and off of the Library of Congress campus, with no restrictions, by an unlimited number of users
Access Advisory
- Unrestricted online access
Online Format
- image
LCCN Permalink
Additional Metadata Formats
Format
Contributor
- Mayer, Lauren A.
- Project Air Force (U.S.). Resource Management Program
- Rand Corporation
- Snyder, Don
- United States. Department of the Air Force