Search

RC.RT-6 Red & Blue / STAR / CBEST / GBEST

Description

Use Red and Blue Teams and any specific testing regime, such as the STAR , CREST , CBEST  or GBEST  to conduct specific tailored ethical attacks against your infrastructures and assets in order that weaknesses, gaps and control misconfigurations, and process gaps are addressed. With the increasing popularity of Artificial Intelligence (AI) and Machine Learning (ML) models being used to provide defence, protection and monitoring capabilities, it is possible that AI and ML models can be tricked in ways that the code developers may not had envisaged with adversarial AI. So, it is possible that organisation may consider using AI Red Team to protect critical infrastructure [35].

Outcomes / Outputs
(Conduct / Fix / Ingest / List / Plan / Procure / Produce / Report / Review / Set / Test  / Train )
  1. Conduct Red and Blue testing exercises including specialist ones e.g. STAR, CREST, CBEST or GBEST
  2. Conduct AI Red Team exercise, where applicable
Reference
  1. Bill Eidson (2019), “Creating an AI Red Team to Protect Critical Infrastructure”, MITRE, September 2019. Retrieved Dec. 2019. https://www.mitre.org/publications/project-stories/creating-an-ai-red-team-to-protect-critical-infrastructure

© 2017 – 2020, C-MRIC.ORG, C-MRIC.COM and Cyber Recovery Operational Framework are registered trademarks of the C-MRIC organisation.

C-MRIC.COM
Privacy Policy
Terms of Use
GET IN TOUCH

Follow our activity