Scenario-Based Risk Analysis (Risk Statements Template)

The following scenario describes a spoofing attack that targets an IoT System of Interest: An outside actor with malicious intent plans to obtain a valid  certificate through social engineering and then use it to send an illegitimate CAP-compliant alert message to the IPAWS-OPEN Gateway. In carrying out this attack, the actor plans to spoof an AOS.

First, the threat actor performs reconnaissance to gather the information needed to conduct social engineering to get a valid IPAWS certificate and the associated encryption key from an AO construct an illegitimate CAP-compliant alert message that will be accepted by the IPAWS-OPEN Gateway

The IoTSI -SERA Framework incorporates two key design features that differentiate it from other security risk assessments. The first is the use of operational models. Participants applying traditional security-risk assessments typically rely on their tacit understanding of the operational context in which a software-reliant system must operate. Our experience indicates that tacit assumptions are often incorrect or incomplete, which adversely affects the results of a security risk analysis. We propose using operational models to describe a system’s operational context.

Please Note. The IoTSI utilizes the Security Engineering Risk Analysis (SERA) Method as our proposed methodology. However, organizations may implement their own preferred,established or mandated (Legal and/or Regulatory) risk management method. The Framework allows for variations on the risk management standards utilised, providing they adhere to industry standards and maintain "Security by Design" principles.