Gwang-Hyun Ahn, Dong-kyoo Shin, Journal of Internet Computing and Services, Vol. 26, No. 4, pp. 161-177, Aug. 2025
10.7472/jksii.2025.26.4.161, Full Text:  HTML
Keywords: Cyber Resilience, MITRE D3FEND, risk management, Security Assessment

Abstract

While the financial sector's prevailing "Cyber Resilience Assessment Guidelines" offer a governance-based framework for ensuring crisis response, recovery capabilities, and operational continuity, they lack specific criteria to evaluate the practical implementation level or the applied effectiveness of defensive technologies. To bridge this gap, this study aims to design a technology-centric cyber resilience evaluation framework based on the MITRE D3FEND framework, thereby providing a practical supplement to the existing guidelines. n this research, the domains of detection, protection, analysis, and recovery were reconfigured based on D3FEND's Tactics, Techniques, and Procedures (TTPs) classification system, and quantitative indicators such as implementation level and degree of automation were established for each technological component. Furthermore, to secure the scientific validity of the proposed metrics, a systematic metric selection framework was adopted , and the effectiveness of these evaluation metrics was validated through linkage with ATT&CK and CVE information. Furthermore, to validate its effectiveness and feasibility, the proposed framework was objectively verified through a Delphi survey conducted with a panel of security experts. The results of this research can be utilized as a practical assessment tool for strengthening the cyber resilience of financial institutions and are expected to contribute to narrowing the gap between policy formulation and technological application.

Statistics
Cite this article