Commit e3f904ce authored by Valerie Aurora's avatar Valerie Aurora
Browse files

Reorder requirements so we can inherit all requirements from previous

parent 44bb48bf

EN-304-625.md

+34 −48
Original line number Diff line number Diff line
@@ -1744,81 +1744,67 @@ The risk factors by type are: 


The mitigations that reduce risk by type are:



  * Likelihood: KEVD, KEVM, KEVA, KEVT, SCAN, SCFS, SSCA, FZ95, BTIN, IMSL, MSAF-\*, MZRO-\*, ADEF, DPAH, PDDI-\*, SUDC, SUVP, SUOE, SUAP, SUAO, CDTX, JSTY, RSET, INST, DELE, VULH

  * Likelihood: KEVD, KEVA, KEVM, KEVT, SCAN, SCFS, SSCA, FZ95, BTIN, IMSL, MSAF-\*, MZRO-\*, ADEF, DPAH, PDDI-\*, SUDC, SUVP, SUOE, SUAP, SUAO, CDTX, JSTY, RSET, INST, DELE, VULH



  * Impact: IMSL, DCTX, DJST, IDST, NTFY, WDOG, LOGG, SDRF, SDTR



### C.4.3 List of threats, risk assessments, and mitigations



#### C.4.3.1 Known exploitable vulnerabilities at first use

#### C.4.3.1 TH-UEVU: Unknown exploitable vulnerabilities



**[TH-KEVU]:** Attacker may use known exploitable vulnerabilities in the product implementation to get unauthorized access to product assets when the product is first used.

Attacker may use unknown exploitable vulnerabilities in the product implementation to get unauthorized access to product assets.



| Risk factors                       | Likelihood | Security profiles            |

|-----------------------------------------------|------------|------------------------------|

| max(PHYS, SFT, NET) = 0 or COM = 0 or ADM = 0 | Low        | WD-1                         |

|------------------------------------|------------|------------------------------|

| max(PHYS, SFT, NET) = 0 or COM = 0 | Low        | WD-1, VI-1                   |

| all others                         | Medium     | WD-2, WD-3, WD-4, WL-1, VI-1 |

| max(PHYS, SFT, NET) = 2 & COM = 2 & ADM = 2   | High       | WL-2, WL-3, VI-2             |

| max(PHYS, SFT, NET) = 2 & COM = 2  | High       | WL-2, WL-3, VI-2             |



| Risk factors                     | Impact | Security profiles                  |

|----------------------------------|--------|-------------------------|

|----------------------------------|--------|------------------------------------|

| max(SYS, SDS, SDT, FUN, DOS) = 0 | Low    | none                               |

| max(SYS, SDS, SDT, FUN, DOS) = 1 | Medium | WD-1, WD-3, WL-\*, VI-1 |

| max(SYS, SDS, SDT, FUN, DOS) = 2 | High   | WD-2, WD-4, VI-2        |

| max(SYS, SDS, SDT, FUN, DOS) = 1 | Medium | WD-1, WD-3, WL-1, VI-1             |

| max(SYS, SDS, SDT, FUN, DOS) = 2 | High   | WD-2, WD-4, WL-2, WL-3, WL-4, VI-2 |



Requirements that mitigate this threat: NKEV, SSDD, LMII, LMAS, LOGG

Requirements that mitigate this threat: SSDD, LMII, DMIN, LMAS, LOGG



Mitigations for Likelihood:



* Medium to Low: (KEVD or KEVA or KEVT or SCAN), KEVM, SCFS, SSCA, ADEF, DPAH, PDDI-\*

* Medium to Low: SCFS, SSCA, ADEF, DPAH, PDDI-\*



* High to Low: KEVD, KEVA, (KEVT or SCAN), SCFS, SSCA, (FZ95 or BTIN or IMSL), MSAF-\*, MZRO-\*, ADEF, DPAH, PDDI-\*, JSTY

* High to Low: SCFS, SSCA, (FZ95 or BTIN or IMSL), MSAF-\*, MZRO-\*, ADEF, DPAH, PDDI-\*, JSTY



Mitigations for Impact:



* Medium to Low: (NTFY or WDOG), LOGG



* High to Low: DJST, NTFY, WDOG, LOGG



Mitigations required



SP-WD-1: none



SP-WD-2: KEVD or KEVA or KEVT or SCAN, KEVM, SCFS, SSCA, ADEF, DPAH, PDDI-\*, DJST, NTFY, WDOG, LOGG



SP-WD-3: KEVD or KEVA or KEVT or SCAN, KEVM, SCFS, SSCA, ADEF, DPAH, PDDI-\*, NTFY, LOGG

* Medium to Low: LOGG



[etc]

* High to Low: DJST, LOGG



#### C.4.3.2 TH-UEVU: Unknown exploitable vulnerabilities

#### C.4.3.2 TH-KEVU: Known exploitable vulnerabilities at first use



Attacker may use unknown exploitable vulnerabilities in the product implementation to get unauthorized access to product assets.

Attacker may use known exploitable vulnerabilities in the product implementation to get unauthorized access to product assets when the product is first used.



| Risk factors                                  | Likelihood | Security profiles            |

|------------------------------------|------------|------------------------------|

| max(PHYS, SFT, NET) = 0 or COM = 0 | Low        | WD-1, VI-1                   |

|-----------------------------------------------|------------|------------------------------|

| max(PHYS, SFT, NET) = 0 or COM = 0 or ADM = 0 | Low        | WD-1                         |

| all others                                    | Medium     | WD-2, WD-3, WD-4, WL-1, VI-1 |

| max(PHYS, SFT, NET) = 2 & COM = 2  | High       | WL-2, WL-3, VI-2             |

| max(PHYS, SFT, NET) = 2 & COM = 2 & ADM = 2   | High       | WL-2, WL-3, VI-2             |



| Risk factors                     | Impact | Security profiles                  |

|----------------------------------|--------|-------------------------|

|----------------------------------|--------|------------------------------------|

| max(SYS, SDS, SDT, FUN, DOS) = 0 | Low    | none                               |

| max(SYS, SDS, SDT, FUN, DOS) = 1 | Medium | WD-1, WD-3, WL-\*, VI-1 |

| max(SYS, SDS, SDT, FUN, DOS) = 2 | High   | WD-2, WD-4, VI-2        |

| max(SYS, SDS, SDT, FUN, DOS) = 1 | Medium | WD-1, WD-3, WL-1, VI-1             |

| max(SYS, SDS, SDT, FUN, DOS) = 2 | High   | WD-2, WD-4, WL-2, WL-3, WL-4, VI-2 |



Requirements that mitigate this threat: SSDD, LMII, DMIN, LMAS, LOGG

Requirements that mitigate this threat: NKEV



Mitigations for Likelihood:



* Medium to Low: SCFS, SSCA, ADEF, DPAH, PDDI-\*

All mitigations from TH-UEVU apply, in addition to:



* High to Low: SCFS, SSCA, (FZ95 or BTIN or IMSL), MSAF-\*, MZRO-\*, ADEF, DPAH, PDDI-\*, JSTY



Mitigations for Impact:

Mitigations for Likelihood:



* Medium to Low: (NTFY or WDOG), LOGG

* Medium to Low: (KEVD or KEVA or KEVT or SCAN), KEVM



* High to Low: DJST, NTFY, WDOG, LOGG

* High to Low: KEVD, KEVA, (KEVT or SCAN), KEVM



#### C.4.3.3 TH-PHYS: Access to data via acquisition of used product