Skip to main content

Attack Feasibility Enumerations

Five enumerations define the input factors for the ISO/SAE 21434 Annex G attack feasibility scoring. Each factor has a numeric score that contributes to the aggregate feasibility rating.

Risk Assessment Enumerations

  • TARA Impact Levels — Four-level impact severity scale (Severe, Major, Moderate, Negligible)
  • TARA Feasibility Levels — Four-level aggregate feasibility output (High, Medium, Low, Very Low) computed from the five attack factors

Security Property Enumerations

Risk Treatment Enumerations

  • Risk Treatment Choice — Four ISO/SAE 21434-aligned treatment strategies (Avoiding, Reducing, Sharing, Retaining)
  • Treatment Status — Three-state treatment lifecycle (Planned, Ongoing, Completed)
  • Risk Control Type — Three-tier control hierarchy (Inherent Safety Design, Protective Measure, Information for Safety)

System Element Enumerations

Enumeration Summary Table

Enum IDFieldValuesUsed On
taraRecord-attackTimeattackTime5 levelstaraRecord
taraRecord-attackExpertiseattackExpertise4 levelstaraRecord
taraRecord-attackKnowledgeattackKnowledge4 levelstaraRecord
taraRecord-attackWooattackWoo4 levelstaraRecord
taraRecord-attackEquipmentattackEquipment4 levelstaraRecord
taraRecord-taraImpacttaraImpact4 levelstaraRecord
taraRecord-taraFeasibilitytaraFeasibility4 levelstaraRecord
taraRecord-ciaxPropertyciaxProperty6 valuestaraRecord, cybersecurityGoal
cybersecurityGoal-calcal4 levelscybersecurityGoal
taraRecord-treatmentChoicetreatmentChoice4 valuestaraRecord
taraRecord-treatmentStatustreatmentStatus3 valuestaraRecord
riskControlTyperiskControlType3 valuesriskControl
systemElementTypeelementType5 levelssystemElement
systemElement-statusstatus7 statessystemElement