Active Defense Strategy for Cyber
July 2012Most organizations continue to focus on preventing cyber attacks by relying on commercial security products such as patching and blocking bad domain names and IP addresses. While these approaches are effective against some types of threats, they fail to stop advanced attacks and provide no knowledge of what an adversary does once the network is penetrated. This paper present a more effective framework for thinking about cyber defense called the cyber kill-chain.