Attack Potential

You can use this methodology to perform a detailed attack-feasibility-oriented assessment. You can configure this methodology to use a single or multi-impact category, depending on the assessment needs.

  • Single impact category
    It has one impact category per damage scenario for the assessment.
  • Multi-impact category
    It has multiple impact categories per damage scenario for the assessment.

This method analyzes attack paths using attack trees and rates them with a so-called attack potential, which is subsequently translated to an Attack Feasibility Rating (AFR). The attack potential is evaluated based on factors such as:

  • Elapsed time
  • Specialist expertise
  • Knowledge of the item or component
  • Window of opportunity
  • Equipment

The difference between the Likelihood Estimation and Attack Potential methodologies is how a threat AFR is determined.

.