Definitions within environments to investigate

Classes of threats

Classes of networks

Classes of FOLIO services

Classes of tools to explore

Scope

Out of scope

Several stages of aproach

1. Investigation → stories and (ab)use cases

   1. Matrix of cases to explore 

   2. eg. bringing down Okapi

   3. clause of from external network

   4. clause from internal net to bring down modules directly

2. Defining test case/environments

3. Creating test environment and verifying

4. Outcome should be a documentation → no need to specify this on at this stage