@@ -990,6 +990,8 @@ The product shall require authorization by default to access security-relevant a
* Verdict: If every interface does not allow access without authorization => PASS, otherwise => FAIL
* Evidence: List of interfaces allowing access to security-relevant assets, record of activities used to attempt unauthorized access to security-relevant assets, log of results of attempts
#### 5.2.X.x Mapping of mitigations to risk factors and security profiles
| Risk factors | Requires mitigations |
|---------------------|----------------------|
| any | ADEF |
@@ -998,7 +1000,6 @@ The product shall require authorization by default to access security-relevant a
|---------------------|----------------------|
| all | ADEF |
#### 5.2.X.x Mapping of mitigations to security profiles
### 5.2.X **TR-XXXX**: Encryption related stuff
@@ -1020,6 +1021,8 @@ _Description of mitigation in "shall" format._
* Verdict:
* Evidence:
#### 5.2.X.x Mapping of mitigations to risk factors and security profiles
