A goal for Shield was to employ enough structure and rigor to be useful scientifically and to the practitioner, without becoming needlessly rigid or complex. We began with terminology found in the DOD Dictionary of Military and Associated Terms, as well as the United States Government Compendium of Interagency and Associated Terms:
We modified those terms to fit the domain of cyber active defense. Our definitions:
We also added some new terms:
This site presents several different views into the Shield knowledge base across the top. Dropdown menus are available to access the site’s information quickly and easily. There is a matrix view, which provides a quick visual depiction of active defense tactics and techniques. Menus for both tactic and technique views are available for those wanting to go straight to a specific item. The ATT&CK Mapping section of Shield contains a list of the adversary tactics found in the ATT&CK framework. Each ATT&CK tactic has a dedicated page which lists the associated adversary techniques and how active defense can be applied to each one.