Commit e13822a3 authored by Santeri Toikka's avatar Santeri Toikka
Browse files

Merge branch 'val/network_risk' into 'main' 

Proposed risk factor for network segmentation/isolation

See merge request cyber/stan4cr2/en-304-621!15
parents 8c391a7b c4ca08d7

EN-304-621.md

+6 −0
Original line number Diff line number Diff line
@@ -398,6 +398,12 @@ The risk factors identified by the risk assessment in Annex C are grouped into r 
    -   **[EXP-L-1]** NIS2 important entity

    -   **[EXP-L-2]** NIS2 critical entity



-   Access to network used for communication between elements

    -  **[ACC-L-0]** Network physically isolated from public networks with strong physical access control procedures

	-  **[ACC-L-1]** Like L-0, but network has a single physical connection to public networks and strong internal segmentation and access controls that limit spread of compromise

	-  **[ACC-L-2]** Private network with multiple connections to public networks filtered by firewalls, no internal segmentation

	-  **[ACC-L-3]** Everything else



### 4.5.1 Mapping of use cases to risk factors and security profiles



The table below is an example, how the example use cases could be mapped to different risk factors.