Security Categorization Tool (draft)
The summary report expresses the highest level of expected injuries from threat compromise with respect to the security objectives of confidentiality, integrity, and availability.
|Business Domain||Business Activity||Security Category|
|Business Domain||Business Activity||Component||Type||Security Category|
Security Categorization is the process of identifying the potential injuries that could result from compromises of business processes and related information.
The following report provides the detailed injury assessment performed for each process or information component with respect to confidentiality, integrity and availability.
|Business Domain||Business Activity||Business Component||Loss of Confidentiality||Loss of Integrity||Loss of Availability|
|Business Activity Component||Component Description||Type||Authoritative Source||Failure Scenario (in context)||Type of injury||Significance of injury||Analysis||Failure Scenario (in context)||Type of injury||Significance of injury||Analysis||Failure Scenario (in context)||Type of injury||Significance of injury||Analysis|