论文标题
对比识别和管理供应链中的网络安全风险的全球方法
Contrasting global approaches for identifying and managing cybersecurity risks in supply chains
论文作者
论文摘要
供应链越来越受到威胁行为者的目标。使用最近的分类法,我们对比了国家当局给出的各种细节。通常承认威胁,但指导是脱节的。 NIST SP 800-161与分类法紧密保持一致,并为一套通用原则提供了潜在的途径。
Supply chains are increasingly targeted by threat actors. Using a recent taxonomy, we contrast the diverse levels of detail given by national authorities. The threat is commonly acknowledged, but guidance is disjointed. NIST SP 800-161 aligns closely with the taxonomy and offers a potential pathway towards a common set of principles.
