You are here

Threat Analysis Framework

The need to protect national critical infrastructure has led to the development of a
threat analysis framework. The threat analysis framework can be used to identify
the elements required to quantify threats against critical infrastructure assets and
provide a means of distributing actionable threat information to critical
infrastructure entities for the protection of infrastructure assets. This document
identifies and describes five key elements needed to perform a comprehensive
analysis of threat: the identification of an adversary, the development of generic
threat profiles, the identification of generic attack paths, the discovery of
adversary intent, and the identification of mitigation strategies.