Threat-based risk assessment for enterprise networks
January 1, 2016
Journal Article
Author:
Published in:
Lincoln Laboratory Journal, Vol. 22, No. 1, 2016, pp. 33-45.
R&D Area:
R&D Group:
Summary
Protecting enterprise networks requires continuous risk assessment that automatically identifies and prioritizes cyber security risks, enables efficient allocation of cyber security resources, and enhances protection against modern cyber threats. Lincoln Laboratory created a network security model to guide the development of such risk assessments and, for the most important cyber threats, designed practical risk metrics that can be computed automatically and continuously from security-relevant network data.