CYBER DECEPTION: Impact to Cybersecurity and the Application of Machine Learning Tools
Cyber deception is a relatively new approach to cybersecurity that involves creating fake digital assets, such as fake websites or...
Donna Columbus
Ms. Columbus has worked in the Intelligence Community (IC) for over 20 years. She retired from the US Air Force in 2014 after working as a Senior Advisor providing authoritative advice on all aspects of Cyberspace operations, force structure and organizational concepts. She oversaw strategic support activities to enable the right mix of cyber capabilities for future operations.
SPOT: Why End-point Security is not good enough…
Threat Intelligence and Situational Awareness Beyond the Security Boundary Columbus (2019a) identifies ten major cybersecurity firms that are applying AI-based...
SPOT: CMMC: When 32 = 17 (Security Controls)
Why mathematics and the CMMC don't seem to work.... Security controls MUST be either established, addressed in a cybersecurity policy...
HISTORY: The 75-cent Clue….
Meet Stoll & Olson Phone Bill Problem Even before the vast proliferation of the personal computer, it took a 75-cent...
SURVEY: Top 3 Artificial Intelligence (AI) Commercial Vendors
Getting Right or Wrong? Commercial Developments A review of open-source industrial sector literature reveals a predominant use of internal data...
The Top 6 Immutable Rules of RMF
We still do not have a good universal understanding of the role of leadership and the basics of RMF to...
What Good is Theory Without Application?
A Matter of Whether You Want to Go to the Dance The use of a theoretical framework is most associated...
Next-Gen Indicators of Compromise (NG-IOC)
An Evolution for Cyber Threat Intelligence Classic Indicators of Compromise (C-IOC) are based upon heuristic, static, “rules of thumb.” If...
5000+ Visitors to TCS
"So, we are not quite Amazon, but we are excited to hit the 5K mark" Woo Hoo! We also have...
TOP 5: Cybersecurity Framework Articles/Reviews
Some modern approaches to operational and support cyber constructs Alvarenga, A., & Tanev, G. (2017). A cybersecurity risk assessment framework...
A DOD Hybrid-Risk Management Framework (RMF) Step 3
Getting System Developers to get Cyber Right Early...we hope A challenge facing the Department of Defense (DOD) is the allocation...
Traditional Military Action (TMA) versus Covert Action
Should the US ever self-attribute publicly? Does the nature of cyberspace make a difference in whether an activity is characterized...
CYBERLAW: Who owns what “information” on the Internet?
A VERY Quick Analysis of Judge Frank Easterbrook, US Court of Appeals, 7th District's Opinion on Internet IP Information on...
SPOT: Will Lockheed run the clock out on F-35’s ALIS subsystem ATO?
2 WEEKS LEFT The F-35 joint program office issued a one-year Authority to Operate (ATO) in March 5, 2018 for...
Why is Secure System Development So Hard?
Because we are not really trying So why is secure system development so hard? Too many of the major defense...
One Reason ISO 27001 is DOA
So why should we move on and away from ISO 27001? The international standards community has done great work in...
The Cybersecurity Threat Hunt Process (THP)–The Tactical Piece
What are the Steps to an effective "Hunt Process" at the grassroots level? A “Hunt Mission Program” is centered around...
COMMENTARY: F-35 JSF Program, the 2018 “What’s Behind the Curtain” Candidate
The Joint Strike Fighter's (JSF) Autonomic Logistics Information System (ALIS) "Most-Public-Secret" The article, DOD Struggles with Risk Management Framework Adoption, https://defensesystems.com/articles/2018/11/30/dod-risk-management-framework.aspx is...
Top 5 – 2018 Cyber-Analytics and Historical Gift Books
The must read books for 2018 These are the BEST books for the 2018 Cybersecurity Professional. These are the Top...
PROPOSAL: A Federated Cybersecurity Domain as a matter of US Policy
What if the Risk Management Framework (RMF) applied to both the public and private sector ? SUMMARY This policy proposal...
President Xi, Tear Down This “Great Firewall”
A Disruptive Technology Solution for the 21st Century: "Voice of America 2.0" Is this the same attitude that blindsided us...
SYNOPSIS: Risk Management Strategies for Security Threats
A review of academic work addressing how to improve cybersecurity Larrimore, N. P. (2018). Risk management strategies to prevent and...
CYBERLAW: The Stored Communications Act (SCA)
A Case Analysis SUPREME COURT OF THE UNITED STATES City of Ontario, California, Et. Al. v. QUON Et Al. Certiorari...
REVIEW: China’s Position on the 2014 Sony Attack: Implications for U.S. Response
Wilson, J. (2015). China's Position on the Sony Attack: Implications for the US Response. Washington, DC: US-China Economic and Security...
CYBERLAW: Universal City Studios, Inc. v. Reimerdes
111F Supp 2d 294(U.S. Dist. Ct., So Dist. NY, 2000) Historical and legal considerations that play a role in policy...
BRIEF: Dense Wavelength Division Multiplexing (DWDM)
Emerging Technology Bandwidth demands are growing exponentially. “Leading service providers report bandwidth doubling on their backbones every six to nine...
Is “Agile” Cybersecurity Possible?
NIST Frameworks that Fit In the age of lean and agile development, can “Agile Cybersecurity” fit into these paradigms? Is...
