FRD-PAIformerly FRD-ALL-36

Potential Adverse Impact (of vulnerability exploitation)

Definition

The estimated cumulative effect of unauthorized access, disruption, harm, or other adverse impact to agencies that _likely_ could result if a threat actor exploits a _vulnerability_ in the _cloud service offering_; as estimated following FedRAMP recommendations and requirements.

Also Referred To As

potential adverse impactpotential adverse impacts

Used in FedRAMP KSI Requirements

This term appears in FedRAMP Key Security Indicator statements. Understanding its precise definition is critical for accurate self-assessment.

Browse KSI themes →

Back to Glossary Open Assessment Tool →