What is a risk?

A security risk is defined by the French National Agency for Information Systems Security (ANSSI) as a scenario that combines a feared event (sources of threats, critical asset, security criteria, security needs, impacts) and one or more threat scenarios (sources of threats, supporting asset, security criteria, threats, vulnerabilities)

Types of risks

Several types of risks can be distinguished (non-exhaustive list):

For more information