Attack Feasibility Enumerations
Five enumerations define the input factors for the ISO/SAE 21434 Annex G attack feasibility scoring. Each factor has a numeric score that contributes to the aggregate feasibility rating.- Attack Feasibility Factor Enums — All five attack potential factors (TIME, EXP, KNOW, WOO, EQP) with their score values and aggregation thresholds
Risk Assessment Enumerations
- TARA Impact Levels — Four-level impact severity scale (Severe, Major, Moderate, Negligible)
- TARA Feasibility Levels — Four-level aggregate feasibility output (High, Medium, Low, Very Low) computed from the five attack factors
Security Property Enumerations
- CIAx Security Properties — Extended CIA triad with six values (Confidentiality, Integrity, Availability, Authenticity, Authorization, Non-repudiation)
- Cybersecurity Assurance Levels (CAL) — Four-tier assurance level scale (CAL 1-4) per ISO/SAE 21434
Risk Treatment Enumerations
- Risk Treatment Choice — Four ISO/SAE 21434-aligned treatment strategies (Avoiding, Reducing, Sharing, Retaining)
- Treatment Status — Three-state treatment lifecycle (Planned, Ongoing, Completed)
- Risk Control Type — Three-tier control hierarchy (Inherent Safety Design, Protective Measure, Information for Safety)
System Element Enumerations
- System Element Type Hierarchy — Five-level decomposition hierarchy (System, Subsystem, Assembly, Subassembly, Component)
- System Element Status — Seven-state lifecycle with color coding
Enumeration Summary Table
| Enum ID | Field | Values | Used On |
|---|---|---|---|
taraRecord-attackTime | attackTime | 5 levels | taraRecord |
taraRecord-attackExpertise | attackExpertise | 4 levels | taraRecord |
taraRecord-attackKnowledge | attackKnowledge | 4 levels | taraRecord |
taraRecord-attackWoo | attackWoo | 4 levels | taraRecord |
taraRecord-attackEquipment | attackEquipment | 4 levels | taraRecord |
taraRecord-taraImpact | taraImpact | 4 levels | taraRecord |
taraRecord-taraFeasibility | taraFeasibility | 4 levels | taraRecord |
taraRecord-ciaxProperty | ciaxProperty | 6 values | taraRecord, cybersecurityGoal |
cybersecurityGoal-cal | cal | 4 levels | cybersecurityGoal |
taraRecord-treatmentChoice | treatmentChoice | 4 values | taraRecord |
taraRecord-treatmentStatus | treatmentStatus | 3 values | taraRecord |
riskControlType | riskControlType | 3 values | riskControl |
systemElementType | elementType | 5 levels | systemElement |
systemElement-status | status | 7 states | systemElement |