Best Practices in Computer Network Defense: Incident Detection and Response

" The book identifies the state-of-the-art tools and processes being used for cyber defense and highlights gaps in the technology. It presents the best practice of industry and government for incident detection and reponse and examines indicators and metrics for progress along the security continuum. "-Belfer Center (Harvard Kennedy School) The cyber security of vital infrastructure and services has become a major concern for countries worldwide. The members of NATO are no exception, and they share a responsibility to help the global community to strengthen its cyber defenses against malicious cyber activity. The workshop was attended by a multidisciplinary team of experts from 16 countries and three international institutions. The book identifies the state-of-the-art tools and processes being used for cyber defense and highlights gaps in the technology. It presents the best practice of industry and government for incident detection and response and examines indicators and metrics for progress along the security continuum. This book provides those operators and decision makers whose work it is to strengthen the cyber defenses of the global community with genuine tools and expert advice. Keeping pace and deploying advanced process or technology is only possible when you know what is available. This book shows what is possible and available today for computer network defense and for incident detection and response.