Transcription of Supply Chain Attack Framework and Attack Patterns
{{id}} {{{paragraph}}}
Supply Chain Attack Framework and Attack Patterns John F. Miller December 2013 MTR140021 MITRE TECHNICAL REPORT Sponsor: DASD SE Dept. No.: Z610 Contract No.: W15P7T-13-C-F600 Project No.: 0713D050-AA The views, opinions and/or findings contained in this report are those of The MITRE Corporation and should not be construed as an official government position, policy, or decision, unless designated by other documentation. Distribution Statement A Approved for Public Release: 14-0228. Distribution Unlimited. This technical data was produced for the U. S. Government under Contract No. W15P7T-13-C-F600 and is subject to the Rights in Technical Data-Noncommercial Items clause at DFARS (NOV 1995) 2013 The MITRE Corporation. All rights reserved. McLean, VA iii Acknowledgments The author would like to acknowledge and thank Peter Kertzner, a MITRE colleague whose active collaboration throughout FY13 provided many meaningful contributions to this product.
2 Supply Chain Attack Framework and Attack Patterns 2.1 Description This effort addressed SCRM in system acquisition and, specifically, the topic of supply chain attacks. The goal was to elaborate an understanding of attack patterns used to exploit vulnerabilities in the system-acquisition supply chain and throughout the system-development
Domain:
Source:
Link to this page:
Please notify us if you found a problem with this document:
{{id}} {{{paragraph}}}