Loading EN-304-625.md +23 −23 Original line number Diff line number Diff line Loading @@ -1881,7 +1881,7 @@ Requirements: SSDD, MSAF, DMIN, LMAS, LOGG | SDS = 1 | Medium | | SDS = 0 | Low | Requirements: SDEL Requirements: SDEL, SDEF **[TH-CONF]:** Attacker may use configuration errors to get unauthorized access to the product assets. Loading Loading @@ -1982,16 +1982,16 @@ Requirements: CDTX, IDTX, SCUD, LOGG **[TH-AHHS]:** Attacker may use unauthorized access to the product to harm the host system. | Risk factors | Likelihood | |--------------------------------|------------| | (SFT > 1 or NET > 1) & COM > 1 | High | | (SFT = 1 or NET = 1) & COM > 1 | Medium | | (SFT < 1 & NET < 1) or COM = 0 | Low | |-----------------------------------|------------| | max(PHY, SFT, NET) = 2 & COM > 1 | High | | max(PHY, SFT, NET) = 1 & COM > 1 | Medium | | max(PHY, SFT, NET) = 0 or COM = 0 | Low | | Risk factors | Impact | |--------------|--------| | SYS = 2 | High | | SYS = 1 | Medium | | SYS = 0 | Low | |-----------------------------|--------| | max(SDS, SDT, FUN, SYS) = 2 | High | | max(SDS, SDT, FUN, SYS) = 1 | Medium | | max(SDS, SDT, FUN, SYS) = 0 | Low | Requirements: NKEV, SCUD, SSDD, MSAF, LMAS, LOGG Loading Loading @@ -2072,17 +2072,17 @@ Security profiles are associated with sets of risk factor levels. ## D.1 Mapping of risks to requirements | Threat | Requirements | |--------|------------------------------------| |--------|------------------------------------------| | KEVU | NKEV, SCUD, SSDD, MSAF, LMAS, LOGG | | UEVU | SSDD, MSAF, DMIN, LMAS, LOGG | | PHYS | SDEL | | PHYS | SDEL, SDEF | | CONF | SDEF | | UADT | CDTX, DMIN, LMAS | | AVAI | AVAI, MSAF, LMAS, LOGG | | FDOS | AVAI, MSAF, LMAS, LOGG, | | DDOS | AVAI, MSAF, LMAS, LOGG | | MQSE | CDTX, IDTX, SCUD, LOGG | | AHHS | NKEV, SCUD, SSDD, MSAF, LMAS, LOGG | | AHHS | NKEV, SCUD, SSDD, MSAF, LMAS, LOGG, SDEF | ## D.2 Risks not treated by the requirements Loading Loading
EN-304-625.md +23 −23 Original line number Diff line number Diff line Loading @@ -1881,7 +1881,7 @@ Requirements: SSDD, MSAF, DMIN, LMAS, LOGG | SDS = 1 | Medium | | SDS = 0 | Low | Requirements: SDEL Requirements: SDEL, SDEF **[TH-CONF]:** Attacker may use configuration errors to get unauthorized access to the product assets. Loading Loading @@ -1982,16 +1982,16 @@ Requirements: CDTX, IDTX, SCUD, LOGG **[TH-AHHS]:** Attacker may use unauthorized access to the product to harm the host system. | Risk factors | Likelihood | |--------------------------------|------------| | (SFT > 1 or NET > 1) & COM > 1 | High | | (SFT = 1 or NET = 1) & COM > 1 | Medium | | (SFT < 1 & NET < 1) or COM = 0 | Low | |-----------------------------------|------------| | max(PHY, SFT, NET) = 2 & COM > 1 | High | | max(PHY, SFT, NET) = 1 & COM > 1 | Medium | | max(PHY, SFT, NET) = 0 or COM = 0 | Low | | Risk factors | Impact | |--------------|--------| | SYS = 2 | High | | SYS = 1 | Medium | | SYS = 0 | Low | |-----------------------------|--------| | max(SDS, SDT, FUN, SYS) = 2 | High | | max(SDS, SDT, FUN, SYS) = 1 | Medium | | max(SDS, SDT, FUN, SYS) = 0 | Low | Requirements: NKEV, SCUD, SSDD, MSAF, LMAS, LOGG Loading Loading @@ -2072,17 +2072,17 @@ Security profiles are associated with sets of risk factor levels. ## D.1 Mapping of risks to requirements | Threat | Requirements | |--------|------------------------------------| |--------|------------------------------------------| | KEVU | NKEV, SCUD, SSDD, MSAF, LMAS, LOGG | | UEVU | SSDD, MSAF, DMIN, LMAS, LOGG | | PHYS | SDEL | | PHYS | SDEL, SDEF | | CONF | SDEF | | UADT | CDTX, DMIN, LMAS | | AVAI | AVAI, MSAF, LMAS, LOGG | | FDOS | AVAI, MSAF, LMAS, LOGG, | | DDOS | AVAI, MSAF, LMAS, LOGG | | MQSE | CDTX, IDTX, SCUD, LOGG | | AHHS | NKEV, SCUD, SSDD, MSAF, LMAS, LOGG | | AHHS | NKEV, SCUD, SSDD, MSAF, LMAS, LOGG, SDEF | ## D.2 Risks not treated by the requirements Loading
