In the Diamond Model, which four elements constitute its framework?

• A. Attacker, Target, Capability, Infrastructure
• B. Adversary, Victim, Threat, Infrastructure
• C. Adversary, Victim, Capability, Infrastructure
• D. Threat Actor, Victim, Capability, Environment

Answer: (C)

The Diamond Model analyzes intrusions by focusing on four elements: Adversary, Victim, Capability, and Infrastructure. Adversary is the actor behind the attack, Victim is who is targeted, Capability is the tools or methods the attacker uses, and Infrastructure is the underlying channels or services that enable the attack. This four-part framing captures who is involved, what they can do, how they execute it, and whom or what they affect. The option listed matches these four components exactly, aligning with the model’s standard terminology. Other options mix terms like Attacker versus Adversary, Target versus Victim, or substitute Environment/Threat for the model’s defined elements, which diverge from the Diamond Model structure.