|
|
|
|
|
|
|
|
|
|
|
|
|
|
RISK | ToIP LAYER | TRUST AREAS AFFECTED | SEVERITY | LIKELIHOOD | RISK IMPACT | CONSIDERATIONS |
Governance Authority Risks |
|
|
|
|
|
|
Lack of competence to perform role | Ecosystem | Governance |
|
|
| Need for experienced personnel, proper training and governance framework |
Lack of sufficient policy and practices | Ecosystem | Governance |
|
|
| Need for complete governance framework and feedback look |
lack of consistency in operating practices of roles | Ecosystem | Governance |
|
|
| Requires proper oversight and trust assurance mechanisms |
Lack of accountability of roles in network | Ecosystem | Governance |
|
|
| Requires proper oversight and trust assurance mechanisms |
Lack of communication about governance practices | Ecosystem | Governance |
|
|
| Requires appropriate communication channels |
Lack of appropriate authority | Ecosystem | Governance |
|
|
| Requires recognition and endorsement by relying parties |
Ineffective bias in authority | Ecosystem | Governance |
|
|
| Requires even representation, voting standards and non-discrimination practices |
Lack of Relying Party recognition | Ecosystem | Governance |
|
|
| Requires recognition and endorsement by relying parties |
Ecosystem Lacks Jurisdictional Acceptance | Ecosystem | Governance |
|
|
| Requires Mapping of Jurisdictional Regulation |
Ecosystem Lacks Industry Acceptance | Ecosystem | Governance |
|
|
| Requires Mapping of Industry Regulation |
Ecosystem Issues Trust Marks Inappropriately or Without Basis | Ecosystem | Governance |
|
|
| Requires Adequate Trust Marks Policies |
Ecosystem Allowing Inappropriate Actors to Participate in Network | Ecosystem | Governance |
|
|
| Requires Provider Evaluation and Acceptance Processes |
Ecosystem Inappropriately Blacklisting or White Listing Other Ecosystems | Ecosystem | Governance |
|
|
| Requires Adequate Ecosystem Black and White Listing Processing |
Issuer Risks |
|
|
|
|
|
|
Credential Issued without sufficient basis | Data Exchange | Data Integrity |
|
|
| Requires training, trust assurance practices and controlled practices |
Credential Issued before appropriate proofing of basis | Data Exchange | Data Integrity |
|
|
| Requires training, trust assurance practices, controlled practices and proper workflow |
Credential Issued in the wrong format or structure | Data Exchange | Data Integrity |
|
|
| Requires standard formats and formatting controls |
Credential issued to impostors | Data Exchange | Security |
|
|
| Requires Trusted Issuers, trust assurance practices |
Credential Lacking Uniqueness | Data Exchange | Data Integrity |
|
|
| Requires Appropriate Credential Serialization |
Credential Becoming Obsolete | Data Exchange | Data Integrity |
|
|
| Requires Appropriate Credential Validity Periods |
Lack of Credential Revocation | Data Exchange | Data Integrity |
|
|
| Requires Adequate Credential Status Checking Procedures |
Identity Proofing Practices Inadequate for Level of Assurance | Data Exchange | Data Integrity |
|
|
| Requires Ecosystem Governance Conformance Procedures |
Issuer Practices Not Accepted by Ecosystem | Ecosystem | Governance |
|
|
| Requires Issuer Practice Conformance Procedures |
Issuer Operations Unavailable | Data Exchange | Availability |
|
|
| Requires Network Redundancy Procedures |
Verifier Risks |
|
|
|
|
|
|
Lack of competence to perform role | Data Exchange | Governance |
|
|
| Requires training, trust assurance practices and controlled practices |
Lack of consistent verification practices | Data Exchange | Data Integrity |
|
|
| Requires training, trust assurance practices and controlled practices |
Missing verification | Data Exchange | Data Integrity |
|
|
| Requires training, trust assurance practices and controlled practices |
Untimely verification | Data Exchange | Data Integrity |
|
|
| Requires time-based controls |
Evidence of verification incomplete or in incorrect format | Data Exchange | Data Integrity |
|
|
| Requires standard formats and formatting controls |
Verifier Practices Not Accepted by Ecosystem | Ecosystem | Governance |
|
|
| Requires Verifier Conformance Procedures |
Suspended Credential Being Accepted | Data Exchange | Data Integrity |
|
|
| Requires Adequate Credential Suspension Processes |
Revoked Credential Being Accepted | Data Exchange | Data Integrity |
|
|
| Requires Adequate Credential Status Checking Procedures |
Man-In-The_middle Attack During Legitimate Verification | Data Exchange | Security |
|
|
| Requires Verifier Vulnerability Practices |
Verifier Network Unavailable | Data Exchange | Availability |
|
|
| Requires Network Redundancy Procedures |
Credential Registry Risks |
|
|
|
|
|
|
Lack of competence to perform role | Data Exchange | Governance |
|
|
| Requires training, trust assurance practices and controlled practices |
Unavailable registry | Data Exchange | Availability |
|
|
| Requires availability controls |
Lack of appropriate access to registry | Data Exchange | Security |
|
|
| Requires appropriate access controls |
Inappropriate access writes to registry | Data Exchange | Data Integrity |
|
|
| Requires appropriate access management controls |
Breach of registry | Data Exchange | Security |
|
|
| Requires appropriate security perimeter, breach detection and notification controls |
Exploited Use of Stolen Credentials | Data Exchange | Data Integrity |
|
|
| Requires Adequate Breach Notification Processes |
Credential Registry Not Accepted by Ecosystem | Ecosystem | Governance |
|
|
| Requires Credential Verifier Conformance Procedures |
Audit Accreditor Risks |
|
|
|
|
|
|
Insufficient vetting of auditor population | Ecosystem | Governance |
|
|
| Requires training, and generally accepted auditor accreditor practices |
Lack of competence to perform role | Ecosystem | Governance |
|
|
| Requires training, and generally accepted auditor accreditor practices |
Auditor Risks |
|
|
|
|
|
|
Lack of competence to perform role | Ecosystem | Governance |
|
|
| Requires training, sufficient experience and generally accepted auditor practices |
Credential Holder Risks |
|
|
|
|
|
|
Holder Threat of Litigation over Issuer | Data Exchange | Confidentiality |
|
|
| Proper Agreement in pace between Issuer and Holder detailing rights. |
Counterfeit Credentials Being Created | Data Exchange | Data Integrity |
|
|
| Requires Adequate Credential Non-Repudiation Practices |
Lack of Binding Between Holder and Credential | Data Exchange | Data Integrity |
|
|
| Requires Adequate Wallet Protection Measures |
Credential Holder Given Inappropriate Access Rights | Data Exchange | Security |
|
|
| Requires Adequate User Enrolment Processes |
Imposter Using Valid Credential | Data Exchange | Security |
|
|
| Requires Adequate Wallet Protection Measures |
Credential Wallet Private Key is Compromised | Data Exchange | Security |
|
|
| Requires Adequate User Wallet Protection Measures |
Credential Holder's Private Data is Compromised | Data Exchange | Privacy |
|
|
| Requires Adequate User Wallet Protection Measures |
Lack of Portability of Credential | Data Exchange | Data Integrity |
|
|
| Requires Adequate Credetial Interoperability Practices |
Lack of Credential Federation Across Ecosystems | Ecosystem | Governance |
|
|
| Requires Adequate Credetial Interoperability Practices |
Exploited Private PIN Code Capture | Data Exchange | Confidentiality |
|
|
| Requires Adequate Wallet Protection Measures |
Social Engineering Attacks Successfully Gather Credentials by Perpetrators | Data Exchange | Security |
|
|
| Requires Adequate Wallet Protection Measures |
Provider Risk |
|
|
|
|
|
|
Provider Software Does not Operate as Intended | Provider | Data Integrity |
|
|
| Requires Adequate Provider SDLC Processes |
Provider Software Does Not Operate on User Devices | Provider | Data Integrity |
|
|
| Requires Adequate Provider SDLC Processes |
Provider Code Updates Cause Operational Issues | Provider | Data Integrity |
|
|
| Requires Adequate Provider SDLC Processes |
Provider System Unavailable | Provider | Availability |
|
|
| Requires Adequate Provider Hardware Integration Practices |
Utility Risks |
|
|
|
|
|
|
Inconsistent Steward Acceptance Practices | Utility | Governance |
|
|
| Requires Adequate Utliity Steward Aceptance Practices |
Stewards Not Abiding by Governance Practices | Utility | Governance |
|
|
| Requires Adequate Steward Conformance Practices |
Stewardship Not Available to Qualified Applicants | Utility | Governance |
|
|
| Requires Adequate Utliity Steward Aceptance Practices |
Utility Not a Viable Going Concern | Utility | Governance |
|
|
| Requires Adequate Utility Monitoring Practices |
Utility Using an Ineffective Consensus Model | Utility | Governance |
|
|
| Requires Adequate Utility Monitoring Practices |
Utility Consensus Model Not Operating as Designed. | Utility | Governance |
|
|
| Requires Adequate Utility Monitoring Practices |
Utility Charging Inaccurate Fees For Service | Utility | Governance |
|
|
| Requires Adequate Utility Monitoring Practices |
Inadequate Number of Stewards for Consensus Protocol | Utility | Governance |
|
|
| Requires Adequate Utility Monitoring Practices |
Inadequate Infrastructure Supporting Steward Operations | Utility | Availability |
|
|
| Requires Adequate Steward Conformance Practices |
Inadequate Network Throughput Supporting Steward Operations | Utility | Availability |
|
|
| Requires Adequate Steward Conformance Practices |
Inadequate Network Availability Supporting Steward Operations | Utility | Availability |
|
|
| Requires Adequate Steward Conformance Practices |