As networks get larger and more complex, there is a increasing threat of cyberattacks. Vulnerable systems tend to be large and a new approach to defense must be applied. Traditional cyber defense is based on a proactive system where security holes are identified and patched. However, the idea of attack-based network defense where known and unknown threat techniques are cataloged and responses solidified is a more robust defense technique. Having a catalog of attacks would allow for organizations to spend less time reacting and recovering from threats that are well-defined. When applying this cataloging system to higher-government bodies, it allows for more resources to be allocated in offensive cyber-security (hence attack-based network defense) where states are more proactive in seeking out cyber threats and eliminating them. Additionally, this system is valuable in order to quantifiably assess cybersecurity and can promote common, more secure practices across a variety of industries.
