BA09 Security Issues Of SLA
| Context | Compliance manager works with cloud application |
| Problem | Incorrect or unclear information security section of SLA |
| Solution | |
| References | OI-4: Issues emerging because of poor SLA specification [SECCRIT]; V.31: Lack of completeness and transparency in terms of use [ENISA]; V.23: SLA clauses with conflicting promises to different stakeholders [ENISA]; V.24: SLA clauses containing excessive business risk [ENISA] |
| Type | ns:type_ThreatPattern |
| Victim | su:comp_CloudApplication |
| Aggressor | su:comp_ComplianceManager |
| Aggr. role | ns:role_Client |
| STRIDE | |
| Threat |