@@ -1771,6 +1771,18 @@ Type: Affects impact of attack.
***[INT-L-1]** Product is connected to host system via internal adapter requiring disassembly to change
***[INT-L-2]** Product is fully integrated into and cannot be removed from host system
**[DOS]** Cumulative network bandwidth
Description: The estimated cumulative network bandwidth of deployed products that are similar enough to be similarly affected by most security problems in this product.
Rationale: The more bandwidth that can be used for a DDOS attack by exploiting a vulnerability in the product, the higher the level of security that should be required.
Type: Affects impact of attack.
***[DOS-L-0]** Foreseeable deployment includes little or no cumulative network bandwidth
***[DOS-L-1]** Foreseeable deployment includes enough bandwidth to provide 10% of a major DDoS attack
***[DOS-L-2]** Foreseeable deployment includes enough bandwidth to provide more than 10% of a major DDoS attack
### C.5.2 Mapping of use cases to risk factors and security profiles
