Final answer:
The RECOVER function of the NIST Cybersecurity Framework encompasses Restoration, Mitigation, and Resilience, all of which are crucial for reducing the impact of a cybersecurity incident on critical infrastructure.
Step-by-step explanation:
The categories of the RECOVER (RC) function of the NIST Cybersecurity Framework specifically include measures that support timely recovery to normal operations to reduce the impact from a cybersecurity incident. The options that correctly describe the categories of the RECOVER function are:
- Restoration: This involves activities to restore systems and services after an incident has occurred.
- Mitigation: Efforts under this category aim to reduce the impact of an incident. This could involve implementing civil defense and emergency preparedness measures, including anti-terrorism legislation.
- Resilience: This refers to ensuring the resilience of critical national infrastructure so that it can quickly adapt and recover from disruptions.
Option 'b' Response is not a category of the RECOVER function but a separate core function of the NIST Cybersecurity Framework.