- World Economic Forum: Partnering for Cyber Resilience - Towards the Quantification of Cyber Threats
- [1]

The mathematical definition of Cyber-Risk is as follows:

- Cyber-Risk = 1 - Cyber-Confidence

'Cyber-Confidence' is / are the actual executed tests which have passed. This value can be converted to a statistical probability & the associated Cyber-Risk calculated:

- Example-1: 'A certain number' of tests have been executed & passed. Let's imagine that it yields a Defect-Free Confidence of 97.43%.
**Answer:**Cyber-Risk = 2.57%. - Example-2: All 65,536 TCP ports & 65,536 UDP ports are confirmed to be dead or inactive on an asset; how resistant to penetration is it ?
**Answer:**Cyber-Confidence = 99.83%, Cyber-Risk = 0.17%

Typically, this form of Cyber-Confidence &/or Cyber-Risk estimation is termed **Testimation** because:

- It can be applied to estimate the number of tests required for any desired level of Cyber-Confidence
- It can be applied to estimate the Cyber-Confide
The mathematical definition of Cyber-Risk is as follows:

- Cyber-Risk = 1 - Cyber-Confidence

'Cyber-Confidence' is / are the actual executed tests which have passed. This value can be converted to a statistical probability & the associated Cyber-Risk calculated:

- Example-1: 'A certain number' of tests have been executed & passed. Let's imagine that it yields a Defect-Free Confidence of 97.43%.
**Answer:**Cyber-Risk = 2.57%. - Ex
'Cyber-Confidence' is / are the actual executed tests which have passed. This value can be converted to a statistical probability & the associated Cyber-Risk calculated:

- Example-1: 'A certain number' of tests have
Typically, this form of Cyber-Confidence &/or Cyber-Risk estimation is termed

**Testimation**because:- It can be applied to estimate the number of tests required for any desired level of Cyber-Confidence
- It can be applied to estimate the Cyber-Confidence (& Cyber-Risk) based upon the number of tests which have actually been executed & passed

## See also[

- Example-1: 'A certain number' of tests have