~/Cedric

Lack of motivation for work involving data keying Vulnerabilities

No user documentation for existing applications Vulnerabilities

Failure to comply with quality rules Vulnerabilities

No procedure and means of verifying the origin of the software (code signature, binary signature, etc.) Vulnerabilities

7f9f491e-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Developer. Threat: Forging of rights. Vulnerability: Some highly sensitive operations can be performed by a single person

7f9f49d9-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Developer. Threat: Illegal processing of data. Vulnerability: No protection and classification of information

7f9f493e-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Developer. Threat: Illegal processing of data. Vulnerability: No training to explain the conditions controlling the lawful use of information

7f9f4ddb-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Developer. Threat: Eavesdropping. Vulnerability: Personnel susceptible to enticement

7f9f495d-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Developer. Threat: Denial of actions. Vulnerability: Conflictual situation between persons

7f9f4c16-4f02-11e9-b3ea-0800277f0571 Risks

Asset: Developer. Threat: Tampering with hardware. Vulnerability: Low awareness of the need to protect equipment outside the organisation