Sign up to save your podcasts
Or
Share The DISARM Framework Helps Bring Focus to the Disinformation Problem with Executive Director of the DISARM Foundation Jon Brewer
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
The DISARM Framework Helps Bring Focus to the Disinformation Problem with Executive Director of the DISARM Foundation Jon Brewer
In episode 80 of The Cyber5, we are joined by Executive Director of the DISARM Foundation, Jon Brewer.
We discuss the mission of the DISARM Framework, which is a common framework for combating disinformation. Much like how the MITRE ATT&CK framework is used for combating cyber attacks, the DISARM framework is used to identify what Jon calls “cognitive security.” What that means is all the tactics, techniques, and procedures used in crafting disinformation attacks and influencing someone's mind. This includes the narratives, accounts, outlets, and technical signatures used to influence a large population. We chat about what success looks like for the foundation and specific audiences used to help the population in understanding how disinformation actors work.
Three Takeaways:
1. What is the DISARM Framework?
DISARM is the open-source, master framework for fighting disinformation through the coordination of effective action. It was created by cognitive security expert SJ Terp. It is used to help communicators, from whichever discipline or sector, to gain a clear, shared understanding of disinformation incidents and to immediately identify the countermeasure options that are available to them. It is similar to the MITRE ATT&CK framework which provides a list of TTPs that malicious actors conduct cyber attacks.
2. Similarities Between DISARM and MITRE ATT&CK Frameworks: Cognitive Security vs Cyber Security
Cognitive security and the DISARM framework is analogous to cyber security and the MITRE ATT&CK framework. Cognitive security are the TTPs that actors influence minds and cyber security are actors’ ability to steal data from networks. MITRE ATT&CK’s list covers the different TTPs of the cyber kill chain:
- Reconnaissance
- Resource Development
- Initial Access
- Execution
- Persistence
- Privilege Escalation
- Defense Evasion
- Credential Access
- Discovery
- Lateral Movement
- Collection
- Command and Control
- Exfiltration
DISARM’s list covers different TTPs of the disinformation chain:
- Plan Strategy
- Plan Objectives
- Target Audience Analysis
- Develop Narratives
- Develop Content
- Establish Social Assets
- Establish Legitimacy
- Microtarget
- Select Channels and Affordances
- Conduct Pump Priming
- Deliver Content
- Maximize Exposure
- Drive Online Harms
- Drive Offline Activity
- Persist in Information Environment
- Assess Effectiveness
3. Disinformation: A Whole of Society Problem
While MITRE ATT&CK is mostly a business to business framework for enterprises to defend against cyber attacks. The DISARM framework is both a B2B framework for companies like technology and journalism, but also more broadly to consumers. This will take much more support from non-profits and public sector organizations like police and education systems.
View all episodes
By Nisos, Inc.
5
2323 ratings
In episode 80 of The Cyber5, we are joined by Executive Director of the DISARM Foundation, Jon Brewer.
We discuss the mission of the DISARM Framework, which is a common framework for combating disinformation. Much like how the MITRE ATT&CK framework is used for combating cyber attacks, the DISARM framework is used to identify what Jon calls “cognitive security.” What that means is all the tactics, techniques, and procedures used in crafting disinformation attacks and influencing someone's mind. This includes the narratives, accounts, outlets, and technical signatures used to influence a large population. We chat about what success looks like for the foundation and specific audiences used to help the population in understanding how disinformation actors work.
Three Takeaways:
1. What is the DISARM Framework?
DISARM is the open-source, master framework for fighting disinformation through the coordination of effective action. It was created by cognitive security expert SJ Terp. It is used to help communicators, from whichever discipline or sector, to gain a clear, shared understanding of disinformation incidents and to immediately identify the countermeasure options that are available to them. It is similar to the MITRE ATT&CK framework which provides a list of TTPs that malicious actors conduct cyber attacks.
2. Similarities Between DISARM and MITRE ATT&CK Frameworks: Cognitive Security vs Cyber Security
Cognitive security and the DISARM framework is analogous to cyber security and the MITRE ATT&CK framework. Cognitive security are the TTPs that actors influence minds and cyber security are actors’ ability to steal data from networks. MITRE ATT&CK’s list covers the different TTPs of the cyber kill chain:
- Reconnaissance
- Resource Development
- Initial Access
- Execution
- Persistence
- Privilege Escalation
- Defense Evasion
- Credential Access
- Discovery
- Lateral Movement
- Collection
- Command and Control
- Exfiltration
DISARM’s list covers different TTPs of the disinformation chain:
- Plan Strategy
- Plan Objectives
- Target Audience Analysis
- Develop Narratives
- Develop Content
- Establish Social Assets
- Establish Legitimacy
- Microtarget
- Select Channels and Affordances
- Conduct Pump Priming
- Deliver Content
- Maximize Exposure
- Drive Online Harms
- Drive Offline Activity
- Persist in Information Environment
- Assess Effectiveness
3. Disinformation: A Whole of Society Problem
While MITRE ATT&CK is mostly a business to business framework for enterprises to defend against cyber attacks. The DISARM framework is both a B2B framework for companies like technology and journalism, but also more broadly to consumers. This will take much more support from non-profits and public sector organizations like police and education systems.