GUÍA DE
CIBERDEFENSAORIENTACIONES PARA EL DISEÑO, PLANEAMIENTO, IMPLANTACIÓN Y DESARROLLO DE UNA CIBERDEFENSA MILITAR
91 Military cyber defense is developed through a doctrinal
body that establishes norms, criteria, principles,
procedures, guidelines, recommendations and good practices in the design, execution and planning of military operations in cyberspace.
649.
International references regarding cyber defense doctrine are scarce. NATO, habitual doctrinal
reference for allied nations, has recently approved its AJP-3.20 Allied Joint Doctrine for Cyberspace Operations, which describes some basic aspects of cyber defense.
650.
Nations are reluctant to share their cyber defense doctrines, especially regarding intelligence
and offensive activities, which forces nations to get involved in the preparation of their own doctrinal body.
651.
In practice, associations such as ISO or NIST develop global standards circumscribed to cybersecurity or security of information and telecommunications systems, which would cover a small part of the cyber defense field.
652.
The International Organization for Standardization (ISO) has a standards family dedicated to information security management systems (
ISO/IEC 27000 family63), in which the ISO/IEC
27001 stands out as a standard that specifies the
requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization.
653.
The ISO standards have the disadvantage that they are not freely accessible (pay standards) and this deters the freedom of sharing, consultation and distribution that
is required for their study, implementation and monitoring, indirect contradiction to the spirit of standardization, to reach all stakeholders in an agile and effective way.
654.
The US National Institute of Standards and Technologies (NIST) has a standards family dedicated
specifically to cybersecurityShare with your friends: