Learn How FAIR Can Help You Make Better Business Decisions
Order today
Recent Blogs
SEE ALL
FAIR Institute member Chip Block, from Evolver, reviewed the recently published NIST 800-160 Special Publication Systems Security Engineering and shared his considerations on what NIST 800-160 means for risk quantification, FAIR and IoT in an article that deserves to be shared with all of our members.
NIST 800-160, whose subtitle is "Considerations for a Multidisciplinary Approach in the Engineering of Trustworthy Secure Systems", seeks to "address the actions necessary to develop more defensible and survivable (enterprise) systems, inclusive of the machine, physical, and human components that compose the systems and the capabilities and services delivered by those systems."
Here are the main takeaways from Chip's article:
He then poses the question of the measurement of the value of enterprise assets.
Consequently, FAIR - as the standard quantitative risk model - appears to him to align directly with the NIST 800-160 objectives, by providing the measurement foundation. As such, he affirms that "FAIR should become a critical element in engineering design efforts using the approach recommended by NIST 800-160".
You can read the full article here.