... layers of the BORIS framework ,with the risk assessment results specially focusing on the criticality, level of threat and the business impact of the regarded information resource. According to the ... next step of the evaluation process, the importance of the individual sections for the specifically considered e are addressed by matching the security performance objectives set in the upper ... process, a classification of five characteristics is chosen: Very high (A), high (B), medium (C) , low (D), and very low (E). On the basis of this classification, the degree of importance of...