Mission Assurance 17X
3 dimensions in Cyberspace Operations (CO) layer model?
PLC
Physical layer
Logical layer
Cyber-persona layer (digital representation of your identity in cyberspace)
3 dimensions of the Information Environment (IE)?
PIC
Physical (tangible)
Information (data-centric)
Cognitive (human-centric, brain, thoughts)
3 types of ownership in cyberspace?
Blue - owned/protected by the US, its mission partners
Gray - unaffiliated cyberspace
Red - owned/controlled by the adversary
*the lines between each are blurred, leading to issues with attribution
How are cyberattacks attributed?
Geographic location (IP address)
TTPs they use
Level of sophistication
, Goals/interests
How does CO relate to OIE (operations in the information environment)?
CO is an overlapping subset of OIE
that can be executed independently or in concert with other OIE missions
3 primary DoD cyberspace domains?
NIPR - unclass, up to CUI
SIPIR - up to Secret/NOFORN
JWICS - up to TS, all SCI categories
4 threats to DoD cyberspace?
State actors
Non-state actors (criminal orgs, VEOs)
Individuals
Accidents, natural hazards
4 challenges to DoD cyberspace?
*Geography – all cyberspace is owned by someone
*Technology – using capabilities reveals how it functions
*Private industry and public infrastructure – DoD relies on privately owned
infrastructure and supply chains
*Globalization – DoD operates globally and procures mission-essential IT products
from foreign vendors, leading to supply chain and OPSEC risks
Overall purpose of Mission Assurance
- protect or ensure the continued function or resilience of capabilities and assets
-that are critical to the execution of DoD mission-essential functions (MEFs)
3 dimensions in Cyberspace Operations (CO) layer model?
PLC
Physical layer
Logical layer
Cyber-persona layer (digital representation of your identity in cyberspace)
3 dimensions of the Information Environment (IE)?
PIC
Physical (tangible)
Information (data-centric)
Cognitive (human-centric, brain, thoughts)
3 types of ownership in cyberspace?
Blue - owned/protected by the US, its mission partners
Gray - unaffiliated cyberspace
Red - owned/controlled by the adversary
*the lines between each are blurred, leading to issues with attribution
How are cyberattacks attributed?
Geographic location (IP address)
TTPs they use
Level of sophistication
, Goals/interests
How does CO relate to OIE (operations in the information environment)?
CO is an overlapping subset of OIE
that can be executed independently or in concert with other OIE missions
3 primary DoD cyberspace domains?
NIPR - unclass, up to CUI
SIPIR - up to Secret/NOFORN
JWICS - up to TS, all SCI categories
4 threats to DoD cyberspace?
State actors
Non-state actors (criminal orgs, VEOs)
Individuals
Accidents, natural hazards
4 challenges to DoD cyberspace?
*Geography – all cyberspace is owned by someone
*Technology – using capabilities reveals how it functions
*Private industry and public infrastructure – DoD relies on privately owned
infrastructure and supply chains
*Globalization – DoD operates globally and procures mission-essential IT products
from foreign vendors, leading to supply chain and OPSEC risks
Overall purpose of Mission Assurance
- protect or ensure the continued function or resilience of capabilities and assets
-that are critical to the execution of DoD mission-essential functions (MEFs)
