The IT Law Wiki

Defensive countermeasures

32,085pages on
this wiki
Add New Page
Add New Page Talk0

Definition Edit

Defensive countermeasures

includes actions to identify the source of hostile cyber activities; protection/mitigation at the boundary (e.g., Intrusion Protection Systems (IPS), pre-emptive blocks, blacklisting); hunting within networks (actively searching for insiders and other adversaries or malware); passive and active intelligence (including law enforcement) employed to detect cyber threats; and/or actions to temporarily isolate a system engaged in hostile cyber activities.[1]

References Edit

  1. Joint Terminology for Cyberspace Operations, at 4.

Also on Fandom

Random Wiki