[To define Assets here, refer to the Assets section of this chapter]. Optionally, you can add the Trust Levels (users) as an additional column to this table, but I don't include it most of the time in my ATM documents; it's your choice:
ID
|
Name
|
Description
|
1 |
Blog |
Assets related to the blog's website |
1.1 |
Access to WordPress |
Get the credentials of an Admin/Moderator to access the WordPress platform |
1.2 |
Availability of the website |
The ability to make the site unavailable to clients or employees who manage it |
2 |
Database |
Assets related to the MySQL database that holds the website data |
2.1 |
Access to the database |
Being able to access the MySQL locally or remotely |
2.2 |
Availability of the database |
Making the database unavailable to users |
2.3 |
Ability to execute SQL statements |
Being able to execute SQL queries to extract or manipulate data in the database |
2.4 |
Access to Audit Logs data |
Access the audit logs looking for confidential information |