Issues Metrics

Categorizing the issues found across various considerations, we found that UX is the highest ROI venue to focus on. See the following tables for an overview

💡 According to the security risk metrics :

  1. Undetermined: The extent of the risk was not determined during this engagement

  2. Informational: The issue does not pose an immediate risk, but is relevant to security best practices or Defense in Depth

  3. Low: The risk is relatively small or is not a risk the customer will be impacted

  4. Medium: Individual user’s information is at risk, exploitation would be bad for client’s reputation, moderate financial impact, possible legal implications for client

  5. High: Large numbers of users, very bad for client’s reputation, or serious legal or financial implications

Issue Intensity
Undetermined
Informational
Low
Medium
High

Bottlenecks

☑️

UX

☑️

Consistency/Inter-operability

☑️

Security

☑️

Cost of Infrastructure

☑️

💡 OWASP Overall Risk Severity metrics :

Issue Intensity
Low
Medium
High

Bottlenecks

☑️

UX

☑️

Consistency/Inter-operability

☑️

Security

☑️

Cost of Infrastructure

☑️

Read More here :

https://owasp.org/www-community/OWASP_Risk_Rating_Methodology

PreviousCurrent SystemNextScalable Architecture

Last updated