Physical Action

From Open Risk Manual
Revision as of 13:37, 3 November 2021 by Wiki admin (talk | contribs)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Definition

Physical Action is the sub-category of Cyber Risk that encompasses deliberate threats to digital assets that involve proximity, possession, or force.

It Includes theft, tampering, snooping, sabotage, local device access, assault, etc.

VERIS classification note: Natural hazards and power failures are often classified under physical threats. We include such events in the Environmental Hazards category and restrict the Physical category to intentional actions perpetrated by a human actor. This is done for several reasons, including the assessment of threat frequency and the alignment of controls.

Retrieved from "https://www.openriskmanual.org/wiki/index.php?title=Physical_Action&oldid=27113"
  • Creative Commons Attribution-NonCommercial-ShareAlike
  • Powered by MediaWiki
  • Powered by Semantic MediaWiki