As the Biden administration continues to develop US cybersecurity requirements on software and supply chain security, zero trust, and incident reporting, among other initiatives, the projects have one often-unstated overarching goal: Improve the cybersecurity resilience of the nation’s critical infrastructure.
The US National Institute of Standards and Technology (NIST) defines cybersecurity resilience as “the ability to anticipate, withstand, recover from, and adapt to adverse conditions, stresses, attacks, or compromises on systems that use or are enabled by cyber resources.” Its primary purpose is “to enable mission or business objectives that depend on cyber resources to be achieved in a contested cyber environment.”
