100% satisfaction guarantee Immediately available after payment Both online and in PDF No strings attached
logo-home
Previously searched by you
Previously searched by you
logo
FAIR Open Group Certification Exam 2023 with complete solution $10.49   Add to cart
Quickly navigate to
Preview
  2.  
  3. FAIR Open Group
  4.  
  5. FAIR Open Group

Exam (elaborations)

FAIR Open Group Certification Exam 2023 with complete solution
 1 view  0 purchase
  • Course
  • FAIR Open Group
  • Institution
  • FAIR Open Group

FAIR Open Group Certification Exam 2023 with complete solution Loss Event Frequency Loss Event Frequency (LEF) is the probable frequency, within a given timeframe, that a threat agent will inflict harm upon an asset. In basic terms this can be thought of as how often a bad thing happens to some...

[Show more]

Preview 1 out of 3  pages

Document information

  • July 10, 2023
  • 3
  • 2022/2023
  • Exam (elaborations)
  • Questions & answers

Subjects

  • fair open group certification exam 2023 with compl

Written for

  • FAIR Open Group
All documents for this subject (6)

Seller

avatar-seller
LECTMAGGY

Reviews received

Content preview

FAIR Open Group Certification Exam 2023 with complete
solution
Loss Event Frequency
Loss Event Frequency (LEF) is the probable frequency, within a given timeframe, that a
threat agent will inflict harm upon an asset. In basic terms this can be thought of as how
often a bad thing happens to something that we care about; for example, how often your
money is stolen, or how many times per year hackers perform a denial of service attack
against your online banking system.
Threat Event Frequency
Threat Event Frequency (TEF) is the probable frequency, within a given timeframe, that
a threat agent will act in a manner that could result in a loss. For example, the probable
frequency, within a given timeframe, that a thief tries to steal the money, a tornado hits
a building, hackers perform a denial of service attack on your computer system, etc.
Contact Frequency
Contact Frequency (CF) is the probable frequency, within a given timeframe, that a
threat agent will come into contact with an asset. Contact can be physical or "logical"
(e.g., over the network).
Probability of Action
Probability of Action (PoA is the probability that a threat agent will act against an asset
once contact occurs. Once contact occurs between a threat agent and an asset, action
against the asset may or may not take place. For some threat agent types, especially
natural threat agents, action always takes place. For example, if a tornado comes into
contact with a house, action is a foregone conclusion.
Vulnerability
The definition of Vulnerability in the FAIR risk taxonomy departs from the casual or
informal use of the term. Vulnerability (Vuln) is the probability that a threat event will
become a loss event. Vulnerability exists when there is a difference between the force
being applied by the threat agent, and an object's ability to resist that force. This simple
analysis provides us with the two primary factors that drive Vulnerability: Threat
Capability (TCap) and Resistance Strength (RS).
Threat Capability
Threat Capability (TCap) is the probable level of force that a threat agent is capable of
applying against an asset. Not all threat agents are created equal. In fact, threat agents
within a single threat community are not all going to have the same capabilities.
Resistance Strength
Resistance Strength (RS) is the strength of a control as compared to a baseline
measure of force. In simple terms, this can be considered the degree of difficulty faced
by the threat agent. For example, a wireless network secured by WPA2 has a higher RS
to a hacker community than one secured by WEP.
Loss Magnitude
Loss Magnitude (LM) is the probable magnitude of loss resulting from a loss event. The
other side of the taxonomy under Loss Event Frequency introduced the factors that
drive the probability of loss events occurring. The Loss Magnitude side of the taxonomy

The benefits of buying summaries with Stuvia:

Guaranteed quality through customer reviews

Guaranteed quality through customer reviews

Stuvia customers have reviewed more than 700,000 summaries. This how you know that you are buying the best documents.

Quick and easy check-out

Quick and easy check-out

You can quickly pay through credit card or Stuvia-credit for the summaries. There is no membership needed.

Focus on what matters

Focus on what matters

Your fellow students write the study notes themselves, which is why the documents are always reliable and up-to-date. This ensures you quickly get to the core!

Frequently asked questions

What do I get when I buy this document?

You get a PDF, available immediately after your purchase. The purchased document is accessible anytime, anywhere and indefinitely through your profile.

Satisfaction guarantee: how does it work?

Our satisfaction guarantee ensures that you always find a study document that suits you well. You fill out a form, and our customer service team takes care of the rest.

Who am I buying these notes from?

Stuvia is a marketplace, so you are not buying this document from us, but from seller LECTMAGGY. Stuvia facilitates payment to the seller.

Will I be stuck with a subscription?

No, you only buy these notes for $10.49. You're not tied to anything after your purchase.

Can Stuvia be trusted?

4.6 stars on Google & Trustpilot (+1000 reviews)

80435 documents were sold in the last 30 days

Founded in 2010, the go-to place to buy study notes for 14 years now

Start selling
$10.49
  • (0)
  Add to cart