Table 5 Ratings for various aspects of attack potential [51, 52]
From: Risk management-based security evaluation model for telemedicine systems
Factor | Level | Value |
|---|---|---|
Elapsed time | ≤1 day | 0 |
≤1 week | 1 | |
≤1 month | 4 | |
≤3 months | 10 | |
≤6 months | 17 | |
> 6 months | 19 | |
not practical | ∞ | |
Expertise | Layman | 0 |
Proficient | 3 | |
Expert | 6 | |
Multiple experts | 8 | |
Knowledge of system | Public | 0 |
| Â | Restricted | 3 |
| Â | Sensitive | 7 |
| Â | Critical | 11 |
Window of opportunity | Unnecessary/unlimited | 0 |
| Â | Easy | 1 |
| Â | Moderate | 4 |
| Â | Difficult | 10 |
|  | None | ∞ |
Equipment | Standard | 0 |
| Â | Specialized | 4 |
| Â | Bespoke | 7 |
| Â | Multiple bespoke | 9 |