Infrastructure
Description
This asset represents the entire lab infrastructure, including virtualization hosts, networking devices, and connected internal systems. It serves as a collective representation for risks or impacts that affect multiple components simultaneously.
Asset Identification
| Attribute | Value |
|---|---|
| Asset ID | INF-INF-01 |
| CI Type | Infrastructure |
| Asset Name | Infrastructure |
| Asset Category | Core Infrastructure |
| Owner | Operations Role (Ops) |
| Status | ⏳ In Progress |
| Location | Scheol Lab (On-Premise) |
| Primary Function | Hosting, networking, and general IT services |
Asset Dependencies
| Dependency Type | Asset | Status |
|---|---|---|
| Virtualization | Proxmox Host | Active |
| Network Security | OPNsense Firewall | Active |
| Backup / Recovery | Backup Storage | Planned |
Relationships
| Relationship | Target CI |
|---|---|
| Hosts | All virtual machines |
| Supports | All platform and information assets |
| Provides capability | Core infrastructure services |
Asset Classification
| Criteria | Level |
|---|---|
| Confidentiality | 🟨 Medium |
| Integrity | 🟥 High |
| Availability | 🟥 High |
Criticality score: 🟥 High
Rationale:
- Availability and integrity are critical to lab operations.
- Confidentiality is moderate as it aggregates multiple internal systems.
Responsibilities
| Role | Responsibility |
|---|---|
| Operations Role (Ops) | Maintenance, patching, configuration management |
| Security Role (Sec) | Security policies, monitoring, access control |
Security Controls (High-Level)
- Configuration management and change control
- Monitoring and alerting of critical systems
- Regular backups and recovery testing
- Access restrictions for administrative interfaces
Security Considerations
Risks related to this asset include:
- Human error causing service disruption
- Misconfigured automation or orchestration
- System-wide outages
Methodological References:
- ISO 27001 - Control 5.1 Policies for information security ; Control 8.2 Privileged access rights.
- NIST CSF - ID.AM Asset Management ; PR.IP Information Protection Processes and Procedures.
- EBIOS RM - Generic infrastructure assets.