Developing Cyber Resilient Systems: An National Imperative for Critical Systems Operating in Hostile Cyber Space
For the Nation to survive and flourish in the 21st century, where hostile actors in cyberspace are assumed and technology will continue to dominate every aspect of our lives, we must develop trustworthy, secure systems that are cyber resilient. Cyber resilient systems are systems that have security measures or safeguards "built in" as a foundational part of the architecture and design and, moreover, display a high level of resiliency. This means the systems can withstand cyber-attacks, faults, and failures and continue to operate even in a degraded or debilitated state - carrying out the organization's mission-essential functions.
NIST will be releasing in the near future a Special Publication on Developing Cyber Resilient Systems. This publication can be viewed as a handbook for achieving cyber resiliency outcomes based on a systems engineering perspective on system life cycle processes in conjunction with risk management processes. In this exclusive session, NIST's Ron Ross will address cyber resiliency and the development of this new special publication.