Industrialcyber posted about how MITRE just rolled out D3FEND 1.0. Some key points about D3FEND are the following:
Key features and enhancements in D3FEND 1.0
- Cyber Attack-Defense (CAD) tool: CAD enables D3FEND users to put the full ontology into action for their specific cybersecurity scenarios. Users can drag, drop, and link nodes on the canvas. Then, users can right-click to explore and incorporate D3FEND’s inference and share their CAD graphs on the internet or private networks.
- Expanded defensive techniques and taxonomies: With ontology additions for identity and access control concepts, operational technology, and source code hardening, D3FEND 1.0 also includes ontological modeling and incorporation of the Common Weakness Enumeration (CWE) to support vulnerability modeling use cases.
- Ontological precision and extensibility: Built upon OWL 2 DL, the D3FEND 1.0 release includes an interface, D3FEND Core Classes, which enables alignment to major upper ontologies, ensuring compatibility for broader semantic applications.
- Transparency in D3FEND updates: With a new content-lifecycle strategy, D3FEND ensures seamless adaptation as it evolves, offering predictable updates for users and software developers.
See the details of this post HERE.