Commit 390df298 authored by Valerie Aurora (Bow Shock)'s avatar Valerie Aurora (Bow Shock)
Browse files

Update risk factors/mitigations for CONF threat

parent 9b63e257

EN-304-626.md

+12 −12
Original line number Diff line number Diff line
@@ -1976,16 +1976,16 @@ Mitigations for Likelihood: 
Attacker may use configuration errors to get unauthorized access to the product assets.



| Risk factors                                            | Likelihood | Security profiles                      |

|-----------------------------------|------------|------------------------|

| max(PHY, SFT, NET) = 0 or ADM = 0 | Low        | WD-1, VI-1             |

| all others                        | Medium     | WL-1                   |

| max(PHY, SFT, NET) = 2 & ADM = 2  | High       | WD-3, WL-2, WL-3, VI-2 |

|---------------------------------------------------------|------------|----------------------------------------|

| CONF = 0 or max(NUSR, CUSR, PHYS, TNET, FNET, ADMN) = 0 | Low        | LR, IoT-1, WE-1                        |

| all others                                              | Medium     | IoT-2, IoT-3, OT-1                     |

| CONF = 2 & max(NUSR, CUSR, PHYS, TNET, FNET, ADMN) = 2  | High       | RO-1, MOB-1, PC-\*, LA-\*, PS-1, SE-\* |



| Risk factors                    | Impact | Security profiles                                         |

|---------------------------|--------|------------------------|

| max(SNDS, SNDT, SENF) = 0 | Low    | none                   |

| max(SNDS, SNDT, SENF) = 1 | Medium | WD-1, WD-3, VI-1       |

| max(SNDS, SNDT, SENF) = 2 | High   | WD-2, WD-4, WL-\* VI-2 |

|---------------------------------|--------|-----------------------------------------------------------|

| max(PPII, SNDS, SNDT, SENF) = 0 | Low    | LR, IoT-1                                                 |

| max(PPII, SNDS, SNDT, SENF) = 1 | Medium | IoT-2, IoT-3                                              |

| max(PPII, SNDS, SNDT, SENF) = 2 | High   | IoT-3, RO-1, OT-1, MOB-1, WE-1, PC-\*, LA-\*, PS-1, SE-\* |



Requirements that mitigate this threat: CDST, SDEF, DMIN, LOGG
@@ -1993,7 +1993,7 @@ Mitigations for Likelihood: 


* Medium to Low: ADEF, PDDI-1



* High to Low: ADEF, PDDI-2 if PHY = 2, PDDI-3 if SFT = 2, PDDI-4 if NET = 2

* High to Low: ADEF, PDDI-2 if CUSR = 2, PDDI-3 if if FNET = 2



Mitigations for Impact: