WARNING! Gitlab maintenance operation scheduled for Thursday, 18 June between 19:00 and 20:00 (CET). During this time window, short service interruptions (less than 5 minutes) may occur. Thank you in advance for your understanding.
@@ -2056,10 +2056,10 @@ To add a new security profile, do the following:
1. Determine the risk factors for the new security profile.
1. If there are any new threats, add them to the threats list along with their risk calculation formula.
1. If any new risk factors are necessary to calculate risks for the new security profile, add the risk factors and update the score for all the security profiles.
1. Use the risk factors of the new security profile to calculate which of the existing mitigations must be applied.
1. Use the risk factors of the new security profile and the risk formula for each threat to calculate which of the existing mitigations must be applied.
1. After the existing risk mitigations are applied, check if all threats are sufficiently mitigated. If not, add new mitigations until the threats have been reduced sufficiently.
1. Update all relevant mappings (e.g. security profile to risk mitigation sets).
1. Propose the new security profile as a contribution to the standard via the ETSI process.
1. Propose the new security profile as a contribution to the standard.
# Annex D (informative): Risk evaluation guidance
@@ -2077,10 +2077,11 @@ This clause describes the metholodogy followed in the current text.
1. Document a comprehensive range of foreseeable use cases for products of this type.
1. For a particular use case, document the inherent and product-specific risk factors likely to affect products of that type which are not already covered by other relevant standards.
1. For that use case, document environmental risk factors likely to affect products of that type which are not already covered by other relevant standards.
1. For each risk factor identified in the prior two steps, document appropriate mitigations which should be present to mitigate the specific risk. If multiple mitigations relate to a common risk factor, indicate a risk-based prioritization to provide guidance on when each mitigation is appropriate. For each mitigation, also document at least one verification methodology.
1. Document a comprehensive list of threats. For each threat, create a formula to estimate the risk level using the risk factors.
1. For each threat, document appropriate mitigations which should be present to mitigate the specific risk depending on the risk level. For each mitigation, also document at least one verification methodology.
1. Create a mapping between each use case and each risk factor, assigning a proportionality score. The scoring range should start from zero, representing the inapplicability of a risk factor to a use case, and increase monotonically based on both the likelihood and severity of potential harm or impact.
1.For each use case, verify that the proportional risk score (relative to other use cases) is informational. For example, use cases that are expected to pose little risk of harm, in the event of a cybersecurity incident, to the end user should have a lower score than use cases which are expected to pose higher risk of harm. This score is subjective and informative only.
1.Combine the output of the prior two steps to derive the completed list of required mitigations for each use case.
1.Develop security profiles from the use cases, which are collections of risk factor levels that can be used to fully describe the risk levels of all relevant threats. There may be one use case persecurity profile or multiple. There should be as many security profiles as are useful to manufacturers.
1.Using the risk factors in the security profiles and the risk formulas and mitigations for all threats, derive the completed list of required mitigations for each security profile.
