Cybersecurity Framework Profile for Ransomware Risk Management
The Information Technology Laboratory (ITL) at the National Institute of Standards and 26 Technology (NIST) promotes the U.S. economy and public welfare by providing technical 27 leadership for the Nation’s measurement and standards infrastructure. ITL develops tests, test 28 methods, reference data, proof of concept implementations, and technical analyses to advance the 29 development and productive use of information technology.
ITL’s responsibilities include the 30 development of management, administrative, technical, and physical standards and guidelines for 31 the cost-effective security and privacy of other than national security-related information in federal 32 information systems.
Ransomware is a type of malicious attack where attackers encrypt an organization’s data and 35 demand payment to restore access. In some instances, attackers may also steal an organization’s 36 information and demand an additional payment in return for not disclosing the information to 37 authorities, competitors, or the public. This Ransomware Profile identifies the Cybersecurity 38 Framework Version 1.1 security objectives that support preventing, responding to, and recovering 39 from ransomware events. The profile can be used as a guide to managing the risk of ransomware 40 events. That includes helping to gauge an organization’s level of readiness to counter ransomware 41 threats and to deal with the potential consequences of events.