CORAS representation Sample Clauses

CORAS representation. The CORAS fragment is identical to Figure 20 presented in Section 7.4.1.
Sample 1See All (5)
AutoNDA by SimpleDocs
CORAS representation. Indicators can be attached to a 'leads-to' relation from one node to another to show that the indicators are used as input for assessing the conditional likelihood of an occurrence of the source node leading to the target node. Normally, this is done by attaching the indicators to a vulnerability on the 'leads-to relation', as the indicators typically say something about the presence or severity of the vulnerability. Figure 20 shows a fragment of a CORAS diagram where two indicators, I1 and I2, have been attached to a vulnerability on the 'leads-to' relation between two nodes. Figure 21 shows a DEXi fragment corresponding to the CORAS fragment in Figure 20. The root node (cl_S1_to_S2) represents the conditional likelihood that an occurrence of the source node (S1) will lead to the target node (S2). Here, there is one direct sub-node to the root node for each attached indicator. Hence, the likelihood of the root node (cl_S1_to_S2) depends on these indicators. As for the case with indicators attached to a node, before the utility function of cl_S1_to_S2 can be defined, we have to define an ordered scale for each indicator. This is done in the same way as described in Section 7.3.
Sample 1
CORAS representation. Figure 21 shows a fragment of a CORAS diagram showing two nodes (threat scenarios S1 and S2) that may each lead to another node (threat scenario S3). This is represented by the 'leads-to' relation from each of S1 and S2 to S3. The likelihood of S3 thus depends on the likelihood of S1 and the conditional likelihood of an occurrence of S1 actually leading to an occurrence of S3, and similarly for S2. Notice that the diagram is meant to represent an example of a more general case, where one or more nodes may lead to another node. Moreover, even if all nodes in this particular fragment are threat scenarios, each of them could equally well have been replaced by an incident without having any impact on the reasoning presented here. The likelihood contribution from S1 to S3 again has two direct sub-nodes, showing that it depends on the likelihood of S1 (l_S1) as well as the conditional likelihood of an occurrence of S1 actually leading to S3 (cl_S1_to_S3). Similarly, the likelihood contribution from S2 to S3 depends on the likelihood of S2 (l_S2) as well as the conditional likelihood of S2 leading to S3 (cl_S2_to_S3). Figure 22 shows only one example, where there are two incoming branches to S3. In general, the number of direct sub-nodes to S3 will be equal to the number of incoming branches. However, it is important to avoid having to too many incoming branches to a node, as this makes it hard to define the utility function. When using five-step scales as in the example, even three incoming branches would give 125 possible combinations. This is can already be hard to handle, and more branches would be completely unfeasible. In such cases, we recommend restructuring the model, as further explained in the DEXi manual [1]. Observe that the nodes representing likelihoods of S1 and S2 occur at the bottom/leaf layer of the DEXi fragment in Figure 22. As these may again depend on incoming branches, the model allows any finite number of levels in the DEXi tree.
Sample 1
CORAS representation. A risk is the likelihood of an incident and its consequence for an asset. Hence, in order to assess the risk level, we need to assess the likelihood of the incident and its consequence for the asset in question. Figure 18 illustrates how a risk is represented in a CORAS threat diagram as a combination of an incident, an asset, and an 'impacts'-relation from the incident to the asset. Our naming convention is shown in 0. Notice that the square brackets are normally used to hold likelihood and consequence assessments. We have inserted the variable/node names to be used in the corresponding DEXi fragment, in order to make it easier to understand the connection.
Sample 1
CORAS representation. Indicators can be attached to a node in order to show that the indicators are used as input for assessing the likelihood of the node. Figure 18 shows a fragment of a CORAS diagram where two indicators, I1 and I2, have been attached to a node S1. The indicators are represented as 'notes', where the colour denotes the indicator type. However, the indicator type is not important for our purposes here, as they are all treated the same with respect to the guidelines. Notice that in CORAS diagrams, a branch always starts with a threat initiating a node. However, we rarely assign likelihoods to the threats themselves or to the 'initiates' relation from a threat to a node, but rather to the node. Any indicators assigned to a threat or to an 'initiates' relation can therefore be handled as if it was assigned directly to the node, following the guidelines of this subsection. Figure 19 shows a DEXi fragment corresponding to the CORAS fragment in Figure 18. 2 This restriction can, however, be lifted if we assume that one occurrence of the source node can lead to several occurrences of the target node. Here, there is one direct sub-node (which is also a leaf-node, and hence shown as a triangle) to the root node for each attached indicator. Hence, the likelihood of the root node (l_S1) depends on these indicators. Before the utility function of l_S1 can be defined, an ordered scale has to be defined for each indicator. Although the indicators do not necessarily represent a likelihood, we make sure to define the scale in such that a low value implies a low risk contribution. For example, assume that a threat scenario representing initiation of a HTTP Request/Response splitting is included in a risk model for client-server protocol manipulation. To this threat scenario, we attach the indicator 'Has any network reconnaissance attempt been detected in the past?' Since this is a yes/no question, the scale for the indicator only has two steps: Yes and No. A positive answer may indicate that someone has tried to prepare for an attack, and hence an increased likelihood. Therefore, for this indicator scale, the order from lowest to highest value would be No; Yes.
Sample 1
CORAS representation. CORAS diagrams can be used to show risk mitigation options by attaching these to the different elements of a risk model. Figure 22 shows such a diagram. Here, the mitigation option M1 is attached to threat scenario S1, indicating that implementing M1 will reduce the likelihood of S1, which could also reduce the likelihood of U1, and hence the associated risk.
Sample 1
CORAS representation. CORAS diagrams can be used to show risk mitigation options by attaching these to the different elements of a risk model. Figure 27 shows such a diagram.
Sample 1
AutoNDA by SimpleDocs
CORAS representation. Indicators can be attached to a node in order to show that the indicators are used as input for assessing the likelihood of the node. Figure 23 shows a fragment of a CORAS diagram where two indicators, I1 and I2, have been attached to a node S1. The indicators are represented as 'notes', where the colour denotes the indicator type. However, the indicator type is not important for our purposes here, as they are all treated the same with respect to the guidelines. 2 This restriction can, however, be lifted if we assume that one occurrence of the source node can lead to several occurrences of the target node.
Sample 1

Related to CORAS representation

  • Client Representations CLIENT represents to VCS that: a. The execution, delivery and performance of this Agreement by CLIENT and the consummation of the transactions contemplated hereby have been duly authorized by all requisite corporate action; this Agreement constitutes the legal, valid and binding obligation of CLIENT, enforceable in accordance with its terms (except to the extent enforcement is limited by bankruptcy, insolvency, reorganization or other Laws affecting creditors’ rights generally and by general principles of equity); and this Agreement and CLIENT’s performance hereunder do not violate or constitute a breach under any organizational document of CLIENT or any contract, other form of agreement, or judgment or order to which CLIENT is a party or by which it is bound. b. CLIENT shall adhere to and comply with all applicable Laws in carrying out its obligations under this Agreement. c. CLIENT will maintain insurance with financially sound carriers or through one or more financially sound self-insurance arrangements in the amounts and types (and with the deductibles or retentions) as set forth in Schedule C to this Agreement, as the same may be amended from time to time. d. During the Term of this Agreement and for a period of *** (***) months thereafter (except if this Agreement is terminated by CLIENT under Section 11.1(a) or Section 11.1(b), in which case this provision shall not survive termination), CLIENT shall not (i) solicit or hire any VCS Field Force member or pay or offer to pay any VCS Field Force member any compensation or benefits (it being understood that the payments by CLIENT to VCS contemplated by this Agreement will not violate this provision), except, in each case, in connection with a Conversion; (ii) provide any contact information (including name, address, phone number or e-mail address) concerning members of the VCS Field Force to any third party providing (or proposing to provide) contract sales services and promotional services to CLIENT; or (iii) assist actively in any other way such a third party in employing or retaining members of the VCS Field Force. For the purposes of this Agreement, the term “solicit” shall not include general advertising by CLIENT for personnel not specifically directed to a VCS Field Force member. e. CLIENT has the lawful authority necessary to market and sell the Products in all geographic regions where the Products are to be promoted under this Agreement. f. CLIENT is solely responsible for reviewing and approving any of its product promotional materials and literature and any other materials or information provided by it to VCS and for ensuring all such materials or information comply with Laws.

  • The Company’s Representations The Company represents and warrants that it is free to enter into this Agreement and to perform each of the terms and covenants of it. The Company represents and warrants that it is not restricted or prohibited, contractually or otherwise, from entering into and performing this Agreement, and that its execution and performance of this Agreement is not a violation or breach of any other agreement between the Company and any other person or entity. The Company represents and warrants that this Agreement is a legal, valid and binding agreement of the Company, enforceable in accordance with its terms.

  • The Sub-Adviser’s Representations The Sub-Adviser represents, warrants and agrees that: (i) It has all requisite power and authority to enter into and perform its obligations under this Agreement, and has taken all necessary corporate action to authorize its execution, delivery and performance of this Agreement; (ii) It is registered as an investment adviser under the Advisers Act and will continue to be so registered during the term of this Agreement; (iii) It has adopted and implemented a written code of ethics complying with the requirements of Rule 17j-1 under the 1940 Act (the “Code of Ethics”) and, if it has not already done so, will provide the Adviser and the Trust with a copy of such Code of Ethics and any amendments thereto; (iv) It has adopted and implemented written policies and procedures, as required by Rule 206(4)-7 under the Advisers Act, which are reasonably designed to prevent violations of federal securities laws by the Sub-Adviser, its employees, officers, and agents (“Compliance Procedures”) and, if it has not already done so, will provide the Adviser and the Trust with a copy of the Compliance Procedures and any amendments thereto; (v) It has delivered to the Adviser copies of its Form ADV as most recently filed with the SEC and will provide the Adviser and the Trust with a copy of any future filings of Form ADV or any amendments thereto; (vi) It is not prohibited by the 1940 Act or the Advisers Act from performing the services contemplated by this Agreement and will promptly notify the Adviser and the Trust of the occurrence of any event that would disqualify the Sub-Adviser from serving as an investment adviser to a Fund pursuant to Section 9(a) of the 1940 Act or other applicable law, rule or regulation; (vii) It has met, and will seek to continue to meet for so long as this Agreement remains in effect, any other applicable federal or state requirements, or the applicable requirements of any self-regulatory agency, necessary to be met by the Sub-Adviser in order to perform its services contemplated by this Agreement; and (viii) This Agreement, when executed and delivered, will constitute a legal, valid and binding obligation of Sub-Adviser, enforceable against the Sub-Adviser in accordance with its terms, subject to bankruptcy, insolvency, reorganization, moratorium and other laws of general application affecting the rights and remedies of creditors and secured parties.

  • Company’s Representations The Company hereby represents and warrants to the Employee that (i) the execution, delivery and performance of this Agreement by the Company do not and shall not materially conflict with, breach, violate or cause a default under any contract, agreement, instrument, order, judgment or decree to which the Company is a party or by which it is bound and (ii) upon the execution and delivery of this Agreement by the Employee, this Agreement shall be the valid and binding obligation of the Company, enforceable in accordance with its terms.

  • The Company’s Representations and Warranties (a) The Company represents and warrants to the Management Stockholder that (i) this Agreement has been duly authorized, executed and delivered by the Company and (ii) the Issued Stock, when issued and delivered in accordance with the terms hereof, will be duly and validly issued, fully paid and nonassessable. (b) The Company will file the reports required to be filed by it under the Act and the Exchange Act and the rules and regulations adopted by the SEC thereunder, to the extent required from time to time to enable the Management Stockholder to sell shares of Stock without registration under the Act within the limitations of the exemptions provided by (A) Rule 144 under the Act, as such Rule may be amended from time to time, or (B) any similar rule or regulation hereafter adopted by the SEC. Notwithstanding anything contained in this Section 9(b), the Company may de-register under Section 12 of the Exchange Act if it is then permitted to do so pursuant to the Exchange Act and the rules and regulations thereunder and, in such circumstances, shall not be required hereby to file any reports which may be necessary in order for Rule 144 or any similar rule or regulation under the Act to be available. Nothing in this Section 9(b) shall be deemed to limit in any manner the restrictions on sales of Stock contained in this Agreement.

  • Company Representation Each of the parties hereto hereby agrees, on its own behalf and on behalf of its directors, members, partners, officers, employees and Affiliates, that Xxxxxxxx & Xxxxx LLP may serve as counsel to each and any of the Seller, Minority Holders and their respective Non-Recourse Parties (individually and collectively, the “Sellers Group”), on the one hand, and the Company and its Subsidiaries, on the other hand, in connection with the negotiation, preparation, execution and delivery of this Agreement and the consummation of the transactions contemplated hereby, and that, following consummation of the transactions contemplated hereby, Xxxxxxxx & Xxxxx LLP (or any successor) may serve as counsel to the Sellers Group (or any member of the Sellers Group) or any director, member, partner, officer, employee or Affiliate of the Company or the Sellers Group (or any member of the Sellers Group) in connection with any litigation, claim or obligation arising out of or relating to this Agreement or the transactions contemplated by this Agreement notwithstanding such representation or any continued representation of the Company and/or any of its Subsidiaries, and each of the Parties consents thereto and waives any conflict of interest arising therefrom, and each of such Parties shall cause any Non-Recourse Party thereof to consent to and waive any conflict of interest arising from such representation. The decision to represent any of the Seller or the Minority Holders and their respective Non-Recourse Parties shall be solely that of Xxxxxxxx & Xxxxx LLP. Any privilege attaching as a result of Xxxxxxxx & Xxxxx LLP representing the Company or any of its Subsidiaries in connection with the transactions contemplated by this Agreement shall survive the Closing and shall remain in effect; provided that, such privilege from and after the Closing shall be assigned to and controlled by the Representative. In furtherance of the foregoing, each of the parties hereto agrees to take the steps necessary to ensure that any privilege attaching as a result of Xxxxxxxx & Xxxxx LLP representing the Company or any of its Subsidiaries in connection with the transactions contemplated by this Agreement shall survive the Closing, remain in effect and be assigned to and controlled by the Representative. As to any privileged attorney-client communications between Xxxxxxxx & Xxxxx LLP and the Company or any of its Subsidiaries prior to the Closing Date (collectively, the “Privileged Communications”), the Purchaser and the Company, together with any of their respective Affiliates, successors or assigns, agree that no such party may use or rely on any of the Privileged Communications in any action or claim against or involving any of the Parties hereto or any of their respective Non-Recourse Parties after the Closing. The Company further agrees that, on its own behalf and on behalf of its Subsidiaries, Xxxxxxxx & Xxxxx LLP’s retention by the Company or any of its respective Subsidiaries shall be deemed completed and terminated without any further action by any Person effective as of the Closing.

  • Applicants' Representations Each of the Funds is registered under the 1940 Act as an open-end management investment company and was organized as a Massachusetts business trust. The Templeton Trust currently consists of eight separate series, and the VIP Trust consists of twenty-five separate series. Each Fund's Declaration of Trust permits the Trustees to create additional series of shares at any time. The Funds currently serve as the underlying investment medium for variable annuity contracts and variable life insurance policies issued by various insurance companies. The Funds have entered into investment management agreements with certain investment managers ("Investment Managers") directly or indirectly owned by Franklin Resources, Inc. ("Resources"), a publicly owned company engaged in the financial services industry through its subsidiaries.

  • Independent Representation Each party hereto acknowledges and agrees that it has received or has had the opportunity to receive independent legal counsel of its own choice and that it has been sufficiently apprised of its rights and responsibilities with regard to the substance of this Agreement.

  • Company’s Representations and Warranties Company represents and warrants to Investor that as of the Closing Date: (i) Company is a corporation duly organized, validly existing and in good standing under the laws of its jurisdiction of incorporation and has the requisite corporate power to own its properties and to carry on its business as now being conducted; (ii) Company is duly qualified as a foreign corporation to do business and is in good standing in each jurisdiction where the nature of the business conducted or property owned by it makes such qualification necessary; (iii) Company has registered its Ordinary Shares under Section 12(b) of the 1934 Act, and is obligated to file reports pursuant to Section 13 or Section 15(d) of the 1934 Act; (iv) there is no limit on the number of Ordinary Shares the Company is authorized to issue under its formation documents or applicable company law; (v) each of the Transaction Documents and the transactions contemplated hereby and thereby, have been duly and validly authorized by Company and all necessary corporate actions related thereto have been taken; (vi) the Transaction Documents have been duly executed and delivered by Company and constitute the valid and binding obligations of Company enforceable in accordance with their terms; (vii) the execution and delivery of the Transaction Documents by Company, the issuance of Securities in accordance with the terms hereof, and the consummation by Company of the other transactions contemplated by the Transaction Documents do not and will not conflict with or result in a breach by Company of any of the terms or provisions of, or constitute a default under (a) Company’s formation documents, each as currently in effect, (b) any indenture, mortgage, deed of trust, or other material agreement or instrument to which Company is a party or by which it or any of its properties or assets are bound, including, without limitation, any listing agreement for the Ordinary Shares, or (c) any existing applicable law, rule, or regulation or any applicable decree, judgment, or order of any court, United States federal, state or foreign regulatory body, administrative agency, or other governmental body having jurisdiction over Company or any of Company’s properties or assets; (viii) no further authorization, approval or consent of any court, governmental body, regulatory agency, self-regulatory organization, or stock exchange or market or the stockholders or any lender of Company is required to be obtained by Company for the issuance of the Securities to Investor or the entering into of the Transaction Documents, other than any filings required to be made with the SEC; (ix) none of Company’s filings with the SEC contained, at the time they were filed, any untrue statement of a material fact or omitted to state any material fact required to be stated therein or necessary to make the statements made therein, in light of the circumstances under which they were made, not misleading; (x) Company has filed all reports, schedules, forms, statements and other documents required to be filed by Company with the SEC under the 1934 Act; (xi) except as disclosed to the Investor in writing, there is no action, suit, proceeding, inquiry or investigation before or by any court, public board or body pending or, to the knowledge of Company, threatened against or affecting Company before or by any governmental authority or non-governmental department, commission, board, bureau, agency or instrumentality or any other person, wherein an unfavorable decision, ruling or finding would have a material adverse effect on Company or which would adversely affect the validity or enforceability of, or the authority or ability of Company to perform its obligations under, any of the Transaction Documents; (xii) except as disclosed to Investor in writing, Company has not consummated any financing transaction that has not been disclosed in a periodic filing or current report with the SEC under the 1934 Act; (xiii) Company is not, nor has it been at any time in the previous twelve (12) months, a “Shell Company,” as such type of “issuer” is described in Rule 144(i)(1) under the 1933 Act; (xiv) with respect to any commissions, placement agent or finder’s fees or similar payments that will or would become due and owing by Company to any person or entity as a result of this Agreement or the transactions contemplated hereby (“Broker Fees”), any such Broker Fees will be made in full compliance with all applicable laws and regulations and only to a person or entity that is a registered investment adviser or registered broker-dealer; (xv) Investor shall have no obligation with respect to any Broker Fees or with respect to any claims made by or on behalf of other persons for fees of a type contemplated in this subsection that may be due in connection with the transactions contemplated hereby and Company shall indemnify and hold harmless each of Investor, Investor’s employees, officers, directors, stockholders, members, managers, agents, and partners, and their respective affiliates, from and against all claims, losses, damages, costs (including the costs of preparation and attorneys’ fees) and expenses suffered in respect of any such claimed Broker Fees; (xvi) when issued, the Conversion Shares and Warrant Shares will be duly authorized, validly issued, fully paid for and non-assessable, free and clear of all liens, claims, charges and encumbrances, other than restrictions under the securities laws; (xvii) neither Investor nor any of its officers, directors, stockholders, members, managers, employees, agents or representatives has made any representations or warranties to Company or any of its officers, directors, employees, agents or representatives except as expressly set forth in the Transaction Documents and, in making its decision to enter into the transactions contemplated by the Transaction Documents, Company is not relying on any representation, warranty, covenant or promise of Investor or its officers, directors, members, managers, employees, agents or representatives other than as set forth in the Transaction Documents; (xviii) Company acknowledges that the State of Utah has a reasonable relationship and sufficient contacts to the transactions contemplated by the Transaction Documents and any dispute that may arise related thereto such that the laws and venue of the State of Utah, as set forth more specifically in Section 10.2 below, shall be applicable to the Transaction Documents and the transactions contemplated therein; and (xix) Company has performed due diligence and background research on Investor and its affiliates including, without limitation, Jxxx X. Xxxx, and, to its satisfaction, has made inquiries with respect to all matters Company may consider relevant to the undertakings and relationships contemplated by the Transaction Documents including, among other things, the following: hxxx://xxxxxxxxx.xxxxxxxxxxxx.xxx/xxxxxxxx/stocks/people/person.asp?personId=7505107&ticker=UAHC; SEC Civil Case No. 07-C-0347 (N.D. Ill.); SEC Civil Action No. 07-CV-347 (N.D. Ill.); and FINRA Case #2011029203701. Company, being aware of the matters described in subsection (xix) above, acknowledges and agrees that such matters, or any similar matters, have no bearing on the transactions contemplated by the Transaction Documents and covenants and agrees it will not use any such information as a defense to performance of its obligations under the Transaction Documents or in any attempt to avoid, modify or reduce such obligations.

  • Basic Representations Section 3(a) of the Agreement is hereby amended by the deletion of “and” at the end of Section 3(a)(iv); the substitution of a semicolon for the period at the end of Section 3(a)(v) and the addition of Sections 3(a)(vi), as follows:

Draft better contracts in just 5 minutes Get the weekly Law Insider newsletter packed with expert videos, webinars, ebooks, and more!