DEXi representation Sample Clauses

DEXi representation. In the DEXi model, a risk node has two sub-nodes, one representing the likelihood and one representing the consequence for the asset in question. Figure 14 shows the DEXi-representation of the CORAS fragment shown in Figure 13, where R1 represents the risk, l_U1 represents the likelihood of the incident U1, and c_U1_A1 represents the consequence of U1 for asset A1. Notice that in the CORAS diagram, the risk does not have a separate name as it is not represented by a separate node, but by the combination of the incident, the asset and the relation between them. Moreover, although the number/index is identical for the risk, the incident, and the asset in this particular example, this need not necessarily be the case.
View SourceView Similar (2)
DEXi representation. Figure 24 shows a DEXi fragment corresponding to the CORAS fragment in Figure 23. Here, there is one direct sub-node (which is also a leaf-node, and hence shown as a triangle) to the root node for each attached indicator. Hence, the likelihood of the root node (l_S1) depends on these indicators. Before the utility function of l_S1 can be defined, an ordered scale has to be defined for each indicator. Although the indicators do not necessarily represent a likelihood, we make sure to define the scale in such that a low value implies a low risk contribution. For example, assume that a threat scenario representing initiation of a HTTP Request/Response splitting is included in a risk model for client-server protocol manipulation. To this threat scenario, we attach the indicator 'Has any network reconnaissance attempt been detected in the past?' Since this is a yes/no question, the scale for the indicator only has two steps: Yes and No. A positive answer may indicate that someone has tried to prepare for an attack, and hence an increased likelihood. Therefore, for this indicator scale, the order from lowest to highest value would be No; Yes.
View Source
DEXi representation. Figure 28 shows a DEXi fragment used to trigger a proposal for implementing mitigation M1.
View Source
DEXi representation. Figure 23 shows a DEXi fragment used to trigger a proposal for implementing mitigation M1. The scale of the root node M1 has only two steps: No and Yes. If the value is Yes, this means that the system should propose M1 as a mitigation option (possibly one among many). This should only be done if the following holds: 1) At least one risk that M1 has the potential to reduce is sufficiently high to warrant the proposal, and 2) the contribution to this risk from the branch to which M1 is attached is sufficiently high that a reduction of this contribution can significantly reduce the risk level. According to Figure 22, the only risk that M1 has the potential to reduce is the risk of incident U1 harming asset A1. In Figure 23, this is represented by R1. Hence, the first condition above is only fulfilled if R1 is sufficiently high. Moreover, the second condition is only fulfilled if the contribution to risk R1 from the branch that includes S1 is also sufficiently high. Therefore, the root node M1 has two direct sub-nodes: R1, representing the relevant risk level (and hence the first condition above), and l_S1_to_U1, representing the likelihood contribution from S1 to U1 (and hence the second condition above).
View Source

Related to DEXi representation

  • False Representation Contractor understands, acknowledges, and agrees that any false representation or any failure to comply with a representation, warranty, or certification made by Contractor is subject to all civil and criminal consequences provided at law or in equity including, but not limited to, immediate termination of this Contract.

  • Basic Representations Section 3(a) of the Agreement is hereby amended by the deletion of “and” at the end of Section 3(a)(iv); the substitution of a semicolon for the period at the end of Section 3(a)(v) and the addition of Sections 3(a)(vi), as follows:

  • 10b-5 Representation At the time of effectiveness of the Registration Statement (or at the time of any post-effective amendment to the Registration Statement) and at all times subsequent thereto up to the Closing Date and the Option Closing Date, if any, the Registration Statement, the Statutory Prospectus and the Prospectus do and will contain all material statements that are required to be stated therein in accordance with the Act and the Regulations, and did or will, in all material respects, conform to the requirements of the Act and the Regulations. The Registration Statement, as of the Effective Date and at the Applicable Time, did not, and the amendments and supplements thereto, as of their respective dates, will not contain any untrue statement of a material fact or omit to state any material fact required to be stated therein or necessary to make the statements therein not misleading. The Prospectus, as of its date and the Closing Date or the Option Closing Date, as the case may be, did not, and the amendments and supplements thereto, as of their respective dates, will not, include any untrue statement of a material fact or omit to state a material fact necessary in order to make the statements therein, in the light of the circumstances under which they were made, not misleading. The Statutory Prospectus, as of the Applicable Time (or such subsequent Applicable Time pursuant to Section 2.1.1), did not include any untrue statement of a material fact or omit to state a material fact necessary in order to make the statements therein, in the light of the circumstances under which they were made, not misleading. When any Preliminary Prospectus or the Statutory Prospectus was first filed with the Commission (whether filed as part of the Registration Statement for the registration of the Public Securities or any amendment thereto or pursuant to Rule 424(a) of the Regulations) and when any amendment thereof or supplement thereto was first filed with the Commission, such Preliminary Prospectus or the Statutory Prospectus and any amendments thereof and supplements thereto complied or will have been corrected in the Statutory Prospectus and the Prospectus to comply in all material respects with the applicable provisions of the Act and the Regulations and did not and will not contain an untrue statement of a material fact or omit to state any material fact necessary in order to make the statements therein, in the light of the circumstances under which they were made, not misleading. The representation and warranty made in this Section 2.2.1 does not apply to statements made or statements omitted in reliance upon and in conformity with written information furnished to the Company with respect to the Underwriters by the Underwriters expressly for use in the Registration Statement, the Statutory Prospectus or the Prospectus or any amendment thereof or supplement thereto. The parties acknowledge and agree that such information provided by or on behalf of the Underwriters consists solely of the following: the names of the Underwriters, the information with respect to stabilization transactions contained in the section entitled “Underwriting - Stabilization” and the identity of counsel to the Underwriters contained in the section entitled “Legal Matters” (such information, collectively, the “Underwriters’ Information”).

  • Investment Representation The Holder hereby represents and covenants that (a) any share of Stock acquired upon the vesting of the Award will be acquired for investment and not with a view to the distribution thereof within the meaning of the Securities Act of 1933, as amended (the “Securities Act”), unless such acquisition has been registered under the Securities Act and any applicable state securities laws; (b) any subsequent sale of any such shares shall be made either pursuant to an effective registration statement under the Securities Act and any applicable state securities laws, or pursuant to an exemption from registration under the Securities Act and such state securities laws; and (c) if requested by the Company, the Holder shall submit a written statement, in form satisfactory to the Company, to the effect that such representation (x) is true and correct as of the date of vesting of any shares of Stock hereunder or (y) is true and correct as of the date of any sale of any such share, as applicable. As a further condition precedent to the delivery to the Holder of any shares of Stock subject to the Award, the Holder shall comply with all regulations and requirements of any regulatory authority having control of or supervision over the issuance or delivery of the shares and, in connection therewith, shall execute any documents which the Board shall in its sole discretion deem necessary or advisable.

  • Fair Representation MSEA-SEIU acknowledges its statutory responsibility to represent and handle grievances for all employees within the bargaining unit. The State shall not be responsible for actions taken or not taken by MSEA-SEIU with respect to its responsibility to provide fair representation.