Overarching: Content: What content does the enterprise have and what are the consequences of protection failures?

Options:

Decision:

Identify each content type present and associate consequences associated with loss of integrity (I), availability (A), confidentiality (C), control over use (U), accountability (T), transparency (R), and custody (S) for each type:

For identified situations, associate content and failure modes that might produce identified consequences (and the consequence types) as a result of loss of integrity (I), availability (A), confidentiality (C), control over use (U), accountability (T), transparency (R), and Custody (S) and supply details of the basis for this conclusion.

Provide worst case financial valuation and/or quantities (initial and over time) of relevant items.

The key for the above table is as follows:

Basis: Describe the basis for each claim or refer to external documentation. Add rows as necessary. At least the following areas should be considered in your analysis, even if many of them may not be placed in the table:
Processing rate or output quality is reduced {within / outside} of defined tolerance ranges.
Processing is stopped and has to be restarted and {no / some} equipment damage results.
Processing is stopped and cannot be restarted until {equipment / facility} is {repaired / replaced} resulting in {delay / loss / shutdown / etc.}.
Hazardous conditions arise during processing, producing undesired {internal / near-equipment / facility-wide / outside-of facility / regional / global} effects. [define area and effects]
Competitive advantage is lost or reduced (e.g., from leaked status or process details, corrupted content, etc.).
Leaked status or process details leads to {internal / external} exploitation for {illegal activities / harm to plant or facility / harm to infrastructure / harm to enterprise}.
Limited loss of control.
Substantial loss of business or harm to brand results.
Conditions interfere with contracts or upset customers.
Confidential or proprietary data leaked.
Intellectual property like patent background and design data leaked.
Medical treatment, dose, or device controls that interact with humans fail (in various ways).
Decision support mechanisms fail to provide proper assistance.
Systems (PLCs) fail to operate properly.
Systems (DCS) fail to {accurately depict sensory data / properly actuate}.
{internal / external} communications mechanisms fail to operate properly.
Other elements fail in other ways.
Critical infrastructure systems fail {causing effects / as a result of system failures}.
Legally protected confidential medical, privacy, or other data inadequately protected in the environment.
{Internal/External} information asks systems to operate in an {undesired/unsafe} mode.
Legal mandates inadequately carried out in the environment.
Legal {retention / disposition / holds} impact {operations / historians}.
Industry-specific regulations unable to be properly met or demonstrated.
Contractually mandated controls unable to be properly met or demonstrated.
Contractual limitations on {use / sharing / disposition} improperly fulfilled.
Contract performance data improperly {provided / applied}.
Government classified or restricted data improperly handled.
Controls with regard to {import / export / transport / some other requirement} not properly carried out.
Required {reporting / tracking / accountability} mechanisms not properly functioning.
Controlled {substances / devices / artifacts} inadequately controlled.
Personally identifying information not properly controlled.
Medical information (test results, fees, providers, etc.) not properly controlled.
Financial information about people or enterprises not properly controlled.
Archival information not demonstrably properly controlled.
Inability to produce output in usable form.
Inability to consume input to proper effect.
Inability to properly process content with proper results.
Loss of trust in the system or its services.

Basis:

Different mechanisms have different implications in different situations in terms of the consequences of protection failures.

Typical consequences identified include:

• LOW: Wasted time and effort (inefficiency) and Losses reasonably covered by non-cyber insurance (e.g., shrinkage, minor accidents and injuries).
• MEDIUM: Substantial negative publicity, Acts viewed as gross negligence, Substantial enterprise value reduction, Serious injury, Limited environmental damage or societal harm.
• HIGH: Loss of life, Serious environmental or societal damage, Enterprise Collapse, Other dire consequences

For example, a temperature control system might have LOW consequences in a small automated photographic developing facility, a MEDIUM consequence in a food production facility (where redundant tests identify a "bad batch"), and HIGH consequences in a chemical plant where its failure causes a major explosion.

Typically, consequences resulting from information protection failures are associated with a loss of integrity (I), availability (A), confidentiality (C), control over use (U), accountability (T), transparency (R), and custody (S) in an information system, with the ultimate result leading to real-world effects through the impact of the failures on the control system.