As the magnitude and complexity of cyberspace increases, so too does the threat1 landscape. Cyber attacks have increased in both frequency and sophistication resulting in significant challenges to organizations that must defend their infrastructure from attacks by capable adversaries. These adversaries range from individual attackers to well-resourced groups operating as part of a criminal enterprise or on behalf of a nation-state. These adversaries are persistent, motivated, and agile; and employ a variety of tactics, techniques, and procedures (TTPs) to compromise systems, disrupt services, commit financial fraud, expose sensitive information, and steal intellectual property. To enhance incident response actions and bolster cyber defenses, organizations must harness the collective wisdom of peer organizations through information sharing and coordinated incident response. This publication expands upon the guidance introduced in Section 4, Coordination and Information Sharing of NIST Special Publication (SP) 800-61, Computer Security Incident Handling Guide and explores information sharing, coordination, and collaboration as part of the incident response life cycle.
The system tested was the Secure 1000 manufactured by Rapiscan Security Products, Inc., Hawthorne, CA. The system was received by CDRH for testing on 3/29106 and had the following identification markings “Serial No.: S701201213”, “Date: May 2001 “. The label also included the following statement: “Each scan cycle from this system produces 3 microRem of x-ray radiation emission. This value is comparable to the radiation exposure all persons receive each five minutes from naturally occurring radioactive materials in the air and soil.” The system tested included a back plate and floor panel. The back plate was measured to be 153 cm wide by 242 cm high. When positioned against the floor panel the back plate surface was at approximately 89 cm from the front surface of the Secure 1000 cabinet.