Attack Potential
You can use this methodology to perform a detailed attack-feasibility-oriented assessment. You can configure this methodology to use a single or multi-impact category, depending on the assessment needs.
- Single impact category
It has one impact category per damage scenario for the assessment. - Multi-impact category
It has multiple impact categories per damage scenario for the assessment.
This method analyzes attack paths using attack trees and rates them with a so-called attack potential, which is subsequently translated to an Attack Feasibility Rating (AFR). The attack potential is evaluated based on factors such as:
- Elapsed time
- Specialist expertise
- Knowledge of the item or component
- Window of opportunity
- Equipment
The difference between the Likelihood Estimation and Attack Potential methodologies is how a threat AFR is determined.
.