High-quality, resilient, and process-oriented security assessments are an essential part of the development process of cyber-physical systems. The threat analyses and risk assessments (TARAs) required for this are very complex, time-consuming, and sometimes nerve-wracking to perform, even for security experts. In this context, clarity, reusability, as well as process and standard conformity lead to efficiency and quality improvements.
We support the creation of such high-quality TARAs with our expertise and by using ISAT 4.0, our specially developed web-based INVENSITY Security Assessment Tool for the systematic and efficient execution of TARAs. The TARA itself is supported in this way and the subsequent decision on risk treatment and the definition of security mechanisms.