@Daniel_Infosec There may be other better or fundamentally different approaches to understanding and measuring coverage. I'd love to know what those are, and in particular upon what alternative foundations we might build.

Keith

@kwm

@Daniel_Infosec ATT&CK data sources are a great means of measuring visibility

ATT&CK techniques are a great jumping off point for threat modeling and resultant coverage

Then we're in to the far harder and more nuanced points of coverage, a la efforts like https://github.com/redcanaryco/AtomicTestHarnesses

7/8/2022, 5:15:33 PM

Favs: 2

Retweets: 1

link

Keith

@kwm

@Daniel_Infosec There may be other better or fundamentally different approaches to understanding and measuring coverage. I'd love to know what those are, and in particular upon what alternative foundations we might build.

7/8/2022, 5:23:56 PM

Favs: 2

Retweets: 0

link