Security Claims

A security claim is a statement about a risk, typically made to justify sharing or retaining a risk. In particular, one security claim must be formulated for each assumption within the TARA. For each risk with treatment share, at least one security claim must be linked on the risk treatment page, see Risk Treatment.

Security claims resulting from one or several assumptions must be linked with the corresponding assumption(s). Moreover, a responsible must be specified. This is typically a customer, or a supplier, further parties may be added.

Each security claim identified by the TARA shall be taken up in the security concept or considered with the relevant stakeholders.

For example,

• For security topics
  The security responsible for the OEM, component, SoS, and plant
• For safety topics
  Project safety manager