Enhanced Security Through Human Error Awareness PNNL-SA-42136

Preview:

Click to see full reader

Citation preview

Enhanced Security Through Enhanced Security Through Human Error AwarenessHuman Error Awareness

PNNL-SA-42136

Tracking aTracking aSecurity EventSecurity Event

Event

A Security Event Occurs

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

Event

It Is Identified and Categorized

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

Event

A Preliminary Report to DOE Is Made

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

Event

A Full Inquiry Is Begun

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

TakeMitigative

Action

Event

Impact Is Assessed, Mitigation Begun

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

Contributions

TakeMitigative

Action

Event

Direct Cause andContributing Factors Are Identified

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

TakeMitigative

Action

Event

Internal, and… External (ITAC) Documentation

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

AssessPatterns &

Trends

DevelopCorrective

Actions

TakeMitigative

Action

Event

Resulting in CorrectiveActions and…

…Assessmentof Patternsand Trends

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

AssessPatterns &

Trends

DevelopCorrective

Actions

Prevent Recurrence

TakeMitigative

Action

Event

Corrective Actions to Prevent Recurrence

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

AssessPatterns &

Trends

DevelopCorrective

Actions

Prevent Recurrence

TakeMitigative

Action

Event

Distribute Lessons Learned

Lessons Learned Are Distributed in DOE

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

AssessPatterns &

Trends

DevelopCorrective

Actions

Prevent Recurrence

Distribute Lessons Learned

PreventSimilar

Occurrences Elsewhere

TakeMitigative

Action

Event

…to Prevent the Likelihood of Similar Occurrences Elsewhere

Distribute Lessons Learned

You AreHere

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

AssessPatterns &

Trends

DevelopCorrective

Actions

Prevent Recurrence

PreventSimilar

Occurrences Elsewhere

TakeMitigative

Action

Event

Your role in theincident inquiry process is acritical link in thechain of incident reporting, inquiry, documentation and analysis that supports the goal of reducing the number of security incidents across the DOE complex.

You AreHere

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

AssessPatterns &

Trends

DevelopCorrective

Actions

Prevent Recurrence

PreventSimilar

Occurrences Elsewhere

TakeMitigative

Action

EventReporting

Reporting

Distribute Lessons Learned

You AreHere

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

AssessPatterns &

Trends

DevelopCorrective

Actions

Prevent Recurrence

PreventSimilar

Occurrences Elsewhere

TakeMitigative

Action

EventReporting

Reporting

InquiryInquiry

Distribute Lessons Learned

You AreHere

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

AssessPatterns &

Trends

DevelopCorrective

Actions

Prevent Recurrence

Prevent Similar

Occurrences Elsewhere

TakeMitigative

Action

EventReporting

Reporting

Documentation

DocumentationInquiryInquiry

Distribute Lessons Learned

You AreHere

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

AssessPatterns &

Trends

DevelopCorrective

Actions

Prevent Recurrence

PreventSimilar

Occurrences Elsewhere

TakeMitigative

Action

EventReporting

Reporting

AnalysisAnalysis

Documentation

DocumentationInquiryInquiry

Distribute Lessons Learned

Distribute Lessons Learned

You AreHere

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

AssessPatterns &

Trends

DevelopCorrective

Actions

Prevent Recurrence

PreventSimilar

Occurrences Elsewhere

TakeMitigative

Action

EventReporting

Reporting

AnalysisAnalysis

Documentation

DocumentationInquiryInquiry

Lessons LearnedLessons Learned

Distribute Lessons Learned

You AreHere

Tracking aTracking aSecurity EventSecurity Event

Identify &Categorize

PreliminaryReport to DOE

FullInquiry

AssessImpact

Assess DirectCause &

ContributionsDocumentIMI 1, 2, 3via ITAC

DocumentNon Incidents

& IMI 4’sInternally

AssessPatterns &

Trends

DevelopCorrective

Actions

Prevent Recurrence

PreventSimilar

Occurrences Elsewhere

TakeMitigative

Action

Event Reduced Likelihood of Security Incidents

Reduced Likelihood of Security Incidents

Reduced Likelihood of Security Incidents

Reduced Likelihood of Security Incidents

ESTHER:ESTHER:Enhanced Security Enhanced Security

Through Human Through Human Error ReductionError Reduction

Recommended

Compression with Multi-ECC: Enhanced Error Resiliency for
Documents
 · 2018-12-22 · ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR ERROR …
Documents
PNNL Environmental Economics
Documents
Milestone Report - PNNL
Documents
Development of Models to Simulate Tracer Behavior in Enhanced Geothermal Systems ... · 2010-11-06 · PNNL-19523 Development of Models to Simulate Tracer Behavior in Enhanced Geothermal
Documents
Natural and Enhanced Attenuation of Chlorinated Solvents Using …bioprocess.pnnl.gov/publictn/pnnl-15937__rt3d_mna_manual.pdf · 2009-07-14 · PNNL-15937 Natural and Enhanced Attenuation
Documents
PNNL-19886 (.pdf)
Documents
Error detection enhanced decoding of difference set codes for memory applications
Technology
Frequently Asked Questions - PNNL
Documents
David Manz, PNNL, PM Carl Miller, PNNL Dan …...(SCI-FI) David Manz, PNNL, PM Carl Miller, PNNL Ken Masica, LLNL Dan Quinlan, LLNL John Munro, ORNL Mark Pleszkoch, ORNL Cybersecurity
Documents
PNNL-15870 (.pdf)
Documents
PNNL Overview - Consortium for Verification Technology€¦ · PNNL Overview PNNL-SA-106030 October 15-16, 2015 1 CONSORTIUM FOR VERIFICATION TECHNOLOGY ... Post Masters 74 Post Docs
Documents
WTP Project Report - PNNL
Documents
Soils are Alive! - PNNL
Documents
The Bechtel Hanford Inc./PNNL Partnershipenergyenvironment.pnnl.gov/brochures/bechtellocal.pdf · The Bechtel Hanford Inc./PNNL Partnership ... PNNL provided technology-related information
Documents
DISCLAIMER - PNNL
Documents
Mikhail Ovchinnikov (PNNL) Alexei Korolev (Env Canada) Jiwen Fan (PNNL), Hugh Morisson (NCAR)
Documents
Cyber Deterrence and Stability - PNNL
Documents
LINEAR AND NON-LINEAR FINITE ELEMENT ERROR ESTIMATION ...filemon.mecanica.upm.es/papers/ijnme-err.pdf · ERROR ESTIMATION BASED ON ENHANCED STRAIN ELEMENTS 1 limitations due to the
Documents
A simplified error estimator for the CB method and its ...cmss.kaist.ac.kr/cmss/papers/2016 A simplified error...method using an enhanced transformation matrix derived considering
Documents