Demonstration of the Cybersecurity Framework through Real-World Cyber Attack

Abstract

The Cybersecurity Framework (CSF) developed by the National Institute of Standards and Technology Cybersecurity, provides five concurrent and continuous functions to Identify, Protect, Detect, Respond, and Recover from cyber threats and vulnerabilities to buildings. Based on the core architecture and security best practices defined in the CSF guidelines, we developed the CSF webtools. The CSF webtools provide actionable functions that can be easily adopted by a facility operator to enhance their critical infrastructure security. The essence is captured in a set of “how-to” instructions for the facility operators to adopt, adapt, and apply to their critical infrastructure facilities. When considered together, these functions provide a high-level, strategic view of the lifecycle of an organization's cybersecurity risk management. The CSF webtools provide an easy to follow set of cybersecurity best practices, policies, and procedures to improve the cybersecurity posture of our nation's buildings and other critical infrastructures. The CSF webtools are also designed to facilitate communication of cybersecurity activities and outcomes across the organization from the executive to operations levels. Finally, the CSF webtools allow the critical infrastructure operators to assess the overall cybersecurity maturity and posture. The goal of this paper is to demonstrate the capabilities of the CSF webtools through an illustrative cyber-attack based on a real-world scenario.