Node-Link Diagram of The Privacy Framework and Controls

This diagram visualizes the relationships between the Privacy Framework (PF) and the selected control set. The PF version selected is represented by the largest node, then functions by medium-sized nodes. The remainder of the nodes are links from the functions to categories, then to subcategories, and finally to controls of the given control set. PF functions and control families (also known as domains in some control sets) are differentiated by color.

This diagram can be useful to visualize which controls facilitate multiple privacy outcomes (or PF subcategories).

Continue reading “Node-Link Diagram of The Privacy Framework and Controls”

Sunburst Visualization of the Privacy Framework

Overview

Sunburst diagrams visualize the cumulative (or recursive) size of each element along a radial axis. The size of the sector indicates the cumulative number of Privacy Framework (PF) elements or controls that are encompassed by that sector. For example, you can see below that the PF function containing the most controls is Govern-P for the NIST SP 800-53r5 Privacy Baseline and Protect-P for the entire SP 800-53r5 control set.

Continue reading “Sunburst Visualization of the Privacy Framework”

Adjacency Matrix of Controls in the Privacy Framework

An adjacency matrix allows you to see items that frequently appear together in a way that enables efficient sorting. Each block demonstrates where the two controls on the axis appear in one or more Privacy Framework (PF) subcategories together.

When the controls on the X and Y axis appear together in one or more PF subcategories, the matrix cell at their intersection is shaded. The darkness of the shade indicates the number of co-occurrences.

Hover over each shaded cell to get detailed information about the intersections. You can also sort the matrix by control ID and co-occurrence frequency.

Control Set

    Order:

    Sunburst Diagram of a Security Control Set

    Overview

    Sunburst diagrams visualize the cumulative (or recursive) size of each element along a radial axis. The size of the sector indicates the cumulative number of CSF elements or controls that are encompassed by that sector.

    Using the digram below, you can visualize the relative size of each group of controls (e.g., control families) given a baseline, threat vector, etc. This allows you to see the relative number of controls dedicated to each function.

    Continue reading “Sunburst Diagram of a Security Control Set”

    Adjacency Matrix of Controls in the Cybersecurity Framework

    An adjacency matrix allows you to see items that frequently appear together in a way that enables efficient sorting. Each block demonstrates where the two controls on the axis appear in one or more CSF subcategories together.

    When the controls on the X and Y axis appear together in one or more CSF subcategories, the matrix cell at their intersection is shaded. The darkness of the shade indicates the number of co-occurrences.

    Continue reading “Adjacency Matrix of Controls in the Cybersecurity Framework”

    Node-Link Diagram of the Cybersecurity Framework Mapped to Controls

    This diagram visualizes the relationships between the CSF and the selected control set. The CSF version selected is represented by the largest node, then CSF functions by medium-sized nodes. The remainder of the nodes are links from the CSF functions to categories, then to subcategories, and finally to controls of the given control set. CSF functions and control families (also known as domains in some control sets) are differentiated by color.

    This diagram can be useful to visualize which controls facilitate multiple security outcomes (or CSF subcategories).

    Continue reading “Node-Link Diagram of the Cybersecurity Framework Mapped to Controls”

    Co-Occurrence Network of Security Controls

    This diagram visualizes the relationships between the controls in the selected control set. Links between controls represent controls that appear in the same CSF subcategory. Controls that appear together in multiple categories are represented by thicker link lines. Control families (also known as domains in some control sets) are differentiated by color.

    This visualization can be useful in determining groups of controls that contribute to a specific security outcome, as defined by a CSF subcategory.

    Continue reading “Co-Occurrence Network of Security Controls”

    Sunburst Visualization of the Cyber Security Framework

    Overview

    Sunburst diagrams visualize the cumulative (or recursive) size of each element along a radial axis. The size of the sector indicates the cumulative number of CSF elements or controls that are encompassed by that sector. For example, you can see below that the CSF function containing the most controls is Protect.

    Continue reading “Sunburst Visualization of the Cyber Security Framework”