@inproceedings{citeulike:6506034,
    abstract = {Awareness of the dependencies between cyber assets, missions and users is critical to assessing the mission impact of cyber attacks and maintaining continuity of business operations. However, there is no systematic method for defining the complex mapping between cyber assets (hardware, software, data), missions and users. This paper reports the results of an interdisciplinary workshop on how to map relationships between cyber assets and the users, missions, business processes and other entities that depend on those assets. The workshop yielded information about types of impact assessment beyond mission and financial analyses; scenarios illustrating the complex relationships between assets, mission and users; and models for expressing those relationships. The results will be used to develop a system that will automatically populate an ontology from commonly available network data and allow computer network defense, information technology and disaster recovery practitioners to query the system for information about the impact of the loss or degradation a cyber asset. Two workshops were held: the first focused primarily on mapping relationships between cyber assets, missions and users in commercial operations, and the second workshop focused on military operations. The participants included people whose operational responsibility is to assure the availability of cyber assets for critical missions, and technology providers and researchers in areas related to the mapping of cyber assets to missions. They represented the armed services, intelligence community, small and large businesses, county government, universities, research companies and large systems integrators. The workshop goals addressed in this paper are: 1) define the types of impacts one needs to assess when a cyber asset is attacked or fails; 2) analyze scenarios that illustrate impacts of a failed cyber asset on missions and users; and 3) model relationships between cyber assets, missions and users.},
    address = {Wright-Patterson AFB, Ohio},
    author = {D'Amico, Anita and Goodall, John and Buchanan, Laurin and Walczak, Paul},
    booktitle = {Fifth International Conference on Information Warfare and Security},
    citeulike-article-id = {6506034},
    day = {8},
    keywords = {computer\_security, cybersecurity, mission\_impact, mission\_readiness},
    location = {Wright-Patterson AFB (Dayton, Ohio)},
    month = {April},
    organization = {Air Force Institute of Technology},
    posted-at = {2010-01-08 20:12:37},
    priority = {0},
    title = {Mission Impact of Cyber Events: Scenarios and Ontology to Express the Relationships between Cyber Assets, Missions and Users},
    year = {2010}
}