D3FEND is available through the non-profit MITRE Corporation as a catalog of defensive cybersecurity techniques and their relationships to offensive and adversary techniques to help standardise the vocabulary used to describe defensive cybersecurity technology functionality.
Mitre described D3FEND as an “early stage experimental research project” with the primary goal of helping to standardize the vocabulary used to describe defensive cybersecurity technology functionality.
This framework illustrates the complex interplay between computer network architectures, threats, and cyber countermeasures released D3FEND as a complement to its existing ATT&CK framework, which is widely used as the knowledge base of cyber adversary tactics and techniques based on real-world observations.
D3FEND provides a model of ways to counter common offensive techniques, enumerating how defensive techniques impact an actor’s ability to succeed. By framing computer network defender complexity of countermeasure functions and techniques as granularly as ATT&CK frames computer network attacker techniques
D3FEND enables cybersecurity professionals to tailor defenses against specific cyber threats, thereby reducing a system’s potential attack surface. This will drive more effective design , development and defense of networked system .