Cyber attacks are a major problem for companies and they can be made all the more devastating if a long time elapses before they're discovered. A new report by the Cloud Security Alliance looks at helping enterprises develop metrics and processes to measure threats before they become cyber attacks. The paper introduces two key metrics -- Elapsed Time to Identify Failure (ETIF) and Elapsed Time to Identify Threat (ETIT) -- and proposes that the responsibility for measuring and reporting each be transferred from companies whose systems encounter cyber attacks to those in the Intrusion Detection System (IDS) space. Researchers suggest that… [Continue Reading]
Continue reading...
Continue reading...