Glossary · ISO/SAE 21434

Damage Scenario

Description of the harm that occurs when a cybersecurity property of an asset is compromised.

A damage scenario links a compromised asset–property pair to a stakeholder harm — safety (S), financial (F), operational (O), or privacy (P) per ISO/SAE 21434 Annex F. The SFOP impact rating fixes the severity component of risk and anchors the chain to threat scenarios and attack paths.

Related terms

Asset (cybersecurity)
Component, function, data flow, or property of an item whose compromise can cause harm.
Cybersecurity Property
Confidentiality, integrity, availability, authenticity (or extensions) protected on each asset.
Threat Scenario
Plausible way an attacker can compromise a cybersecurity property of an asset.
TARA
Threat Analysis and Risk Assessment — the structured cybersecurity risk method of ISO/SAE 21434.

Need help applying Damage Scenario on a programme? Use the contact form or request a KAVACH demo.

Damage Scenario

Asset (cybersecurity)

Cybersecurity Property

Threat Scenario

TARA