Hardware, Industry Regulations, Threat Intelligence

New MITRE framework targets embedded system threats

MITRE sign at its headquarters at Bedford Campus in Bedford, MA, USA. The Mitre Corporation is an American not-for-profit organization.

The Embedded Systems Threat Matrix has been unveiled as a new cybersecurity framework by MITRE to improve the defenses of critical embedded systems, according to SecurityWeek.

Based on the MITRE ATT&CK framework, the ESTM classifies attack tactics and techniques aimed at hardware and firmware environments and is intended for use in industries including healthcare, energy, industrial controls, robotics, and transportation.

"The ESTM has proven valuable in various applications, including cyber threat modeling and attack path analysis, and its alignment with established cybersecurity frameworks ensures seamless integration with existing security practices," MITRE highlighted.

The model links both established and emerging attack vectors to help organizations identify weaknesses within embedded architectures. MITRE also says the framework works with the EMB3D Threat Model and has been significantly improved since its initial release, with the mature version now referred to as ESTM 3.0. The non-profit organization adds that it is seeking contributions from the cybersecurity community to support the project.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy.

You can skip this ad in 5 seconds