MITER’s Center for Threat-Informed Defense (CTID) and Microsoft have jointly introduced Security Stack Mappings for Azure to bring the former’s hostile tactics, techniques, and common knowledge (ATT & CK) framework into the latter’s cloud platform – with competing platforms to follow.
MITER’s ATT & CK framework, introduced in 2015, was created to provide companies with “a globally accessible knowledge base of adversarial tactics and techniques based on real-world observations” in the hope of providing a basis for developing threat models.
While access to ATT & CK is free for everyone, MITER wants to increase its usage, hence the Microsoft partnership. The deal made Azure the first cloud platform to actively link with ATT & CK by assigning integrated security controls to the framework.
“The project aims to fill an information gap for organizations that have a proactive security awareness for the …