<a href="https://colab.research.google.com/github/tsherburne/de-textbook/blob/main/04_SCRE_Vulnerability_Assessment.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

# Initialize Notebook

In [None]:
#@title Download & Install Notebook Packages
%pip install -q manb
import manb
env = manb.Environment('https://genesys.mission-aware.net', '/api/v1/')

In [None]:
#@title Cloudflare Tunnel Authentication
env.Tunnel()

In [None]:
#@title GENESYS Login & Project Selection
env.Login()

# Vulnerability Assessment

## Loss Scenario Identification

[Systems Theoretic Process Analysis (STPA) Guidebook](https://psas.scripts.mit.edu/home/get_file.php?name=STPA_handbook.pdf) (pages 42-49)

---

> <img src="https://raw.githubusercontent.com/tsherburne/de-textbook/main/images/stpa-loss-scenario-identification.png" height="500"/>

----

### Loss Scenario Sub-Types

----

| **Loss Scenario: Sub-Type** | **Scenario Considerations** | *Cyber Security Considerations*
| :---   | :---- | :---- |
| a.1: Controller Behavior | Failures involving the controller (for physical controllers) <br> Inadequate control algorithm <br> Unsafe control input (from another controller) <br>Inadequate process model (does not match reality)| *Control Algorithm / Process Model - flaw introduced by an adversary*|
| a.2: Inadequate Feedback / Path | Feedback not received<br>Inadequate feedback is received| *Feedback affected by an adversary - injected, spoofed, tampered, intercepted, or disclosed*|
| b.3: Control Path | Control action not received<br>Control action improperly received|*Control Action affected by an adversary - injected, spoofed, tampered, intercepted, or disclosed* |
| b.4: Controlled Process | Control action not executed<br>Control action improperly executed| *Controlled Process - flaw introduced by an adversary*|

----

## MBSE ***Vulnerability Assessment*** Entities & Relationships

> <img src="https://raw.githubusercontent.com/tsherburne/de-textbook/main/images/mission-aware-mbse-vulnerability-assessment.png" height="300" />



----

| Entity | Description |
| :---   | :----       | 
| Control Action | A controller provides control actions to control some process and to enforce constraints on the behavior of the <br> controlled process.|
| Component | A component is an abstract term that represents the physical or logical entity that performs a specific function <br> or functions.|
| Feedback | Process models may be updated in part by feedback used to observe the controlled process.|
| Function | A function is a transformation that accepts one or more inputs (items) and transforms them into outputs (items).|
| Hazardous Action |A Hazardous Control Action (HCA) is a control action that, in a particular context and worst-case <br> environment, will lead to a hazard.|
| Item | An item represent flows within and between functions. An item is an input to or an output from a function.|
| Link |A link is the physical implementation of an interface.|
| Loss Scenario |A loss scenario describes the causal factors that can lead to the unsafe control and to hazards.|


----

### Loss Scenario Sub-Type: Meta-Model Mappings

----

| **Loss Scenario: Sub-Type** | **MBSE Meta-Model Mapping** | *Cyber Security Indications*|
| :---   | :---- |:---- |
| a.1: Controller Behavior | **Function**: Controller | Item (Trigger – injected / spoofed)<br>Item (Output – incorrect value)<br>Exit (Error logic) <br>Resource (too much / too little)<br>Attributes: Duration / Timeout (too long / too short)|
| a.2: Inadequate Feedback / Path | **Link**: Feedback| Item – *Feedback*<br>&emsp;value tampered<br>&emsp;size tampered<br>&emsp;order modified<br>Attribute: Capacity (too much / too little)<br>Attribute: Delay (too long / too short)|
| b.3: Control Path | **Link**: Control Action| Item – *Control Action*<br>&emsp;value tampered<br>&emsp;size tampered<br>&emsp;order modified<br>Attribute: Capacity (too much / too little)<br>Attribute: Delay (too long / too short)|
| b.4: Controlled Process | **Function**: Controlled Process|Item (Trigger – injected / spoofed)<br>Item (Output – incorrect value)<br>Exit (Error logic) <br>Resource (too much / too little)<br>Attributes: Duration / Timeout (too long / too short) |

----

In [None]:
#@title Initialize Vulnerability Assessment
va = manb.VulnerabilityAssessment(env)

In [None]:
#@title System ***Loss Scenarios***
#@markdown Definition: ***A Loss Scenario*** describes the causal factors that can lead to the 
#@markdown hazardous control actions and to hazards
va.LossScenarioTable()

In [None]:
#@title Physical Block Diagrams
va.PhysicalBlockDiagrams()

In [None]:
#@title Components - Loss Scenario (LS) Analysis
va.ComponentAnalysisTable()

In [None]:
#@title Links - Loss Scenario Analysis
va.LinkAnalysisTable()

# Exercises

In [None]:
#@title Vulnerability Assessment Questions
ex = manb.Exercises(env, manb.Section.VULNERABILITY_ASSESSMENT)
ex.Edit()