Several years ago, the key players in the US Government security infrastructure developed a new, more proactive architecture with which to confront the growing cyber security threat. They named it Active Cyber Defense (ACD). The goal with ACD is to move from being reactive to proactive in dealing with cyber threats for organizations under attack.
At its core, ACD defines a four-stage pipeline consisting of sensing, sense making, decision making and action. The overarching goal of ACD is to accelerate the progression through the pipeline and to automate the stages as much as possible. The better the intelligence in sensing, sense making and decision making, the more confident and timely the resulting action can be.