{"id":523,"date":"2011-04-18T11:09:24","date_gmt":"2011-04-18T16:09:24","guid":{"rendered":"http:\/\/rud.is\/b\/?p=523"},"modified":"2017-03-27T09:24:01","modified_gmt":"2017-03-27T14:24:01","slug":"rlraa-real-life-risk-assessment-acronyms","status":"publish","type":"post","link":"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/","title":{"rendered":"RLRAA – Real Life Risk Assessment Acronyms"},"content":{"rendered":"
UPDATE:<\/b> I have intentionally cross-posted this to my SIRA blog<\/span> since the combined wit & intelligence of the folks there trumps anything I could do alone here.<\/div>\n

<\/p>\n

All the following newly-minted risk assessment types have been inspired by actual situations. Hopefully you get to stick to just the proper OCTAVE\/FAIR\/NIST\/etc. ones where you practice.<\/p>\n

    \n
  • HARA :: Half-Assed Risk Assessment<\/strong> — When you are not provided any semblance of potential impact data and a woefully incomplete list of assets, but are still expected to return a valid risk rating.<\/li>\n
  • CRA :: Cardassian Risk Assessment<\/strong> — When you are provided the resultant risk rating prior to beginning your risk assessment. (It’s a Star Trek reference for those with actual lives)
    \n

    We’re going to do x anyway because we don’t believe it’s a high risk, but go ahead and do your assessment since the Policy mandates that you do one.<\/em>“<\/p><\/blockquote>\n<\/li>\n

  • IRA :: Immediate Risk Assessment<\/strong> — This one has been showcased well by our own Mr. DBIR himself on the SIRA podcasts. A risk assessment question by a senior executive who wants an answer *now* (dammit)! It is often phrased as “Which is more secure, x or y?<\/em>” or “We need to do z. What’s the worst that can happen?<\/em>“. You literally have no time to research and – if you don’t know the answer – then “Security” must not be very smart.<\/li>\n
  • IRAVA :: In Reality, A Vulnerability Assessment<\/strong> — When you’re asked to determine risk when what they are *really* asking for what the vulnerabilities are in a particular system\/app. Think Tenable\/Qualys scan results vs FAIR or OCTAVE.<\/li>\n
  • IOCAL :: I Only Care About Likelihood<\/strong> — This is when the requester is absolutely fixated on likelihood and believes wholeheartedly that a low likelihood immediately means low risk. Any answer you give is also followed up with “have we ever had anything like x happen in the past?<\/em>” and\/or “have our competitors been hit with y yet?<\/em>“<\/li>\n
  • AD3<\/sup>RA :: Architecture Design Document Disguised As A Risk Assessment<\/strong> — When you are given all (and decent) inputs necessary to complete a pretty comprehensive risk assessment but are then asked to include a full architecture design document on how to mitigate them all. The sad truth is, the project team couldn’t get the enterprise architects (EA) to the table for the first project commit stage, but since you know enough about the technologies in play to fix the major problems, why not just make you do the EA dept’s job while you are just wasting time cranking out the mandatory risk assessment.<\/li>\n
  • WDRA :: Wikipedia Deflected Risk Assessment<\/strong> — When you perform a risk assessment, but a manager or senior manager finds data on Wikipedia that they use to negate your findings. (Since – as we all know – Wikipedia is the sum of all correct human knowledge).<\/li>\n<\/ul>\n

    If you are also coerced into performing an insane risk assessment that doesn’t fit these models, feel free to share them in the comments.<\/p>\n","protected":false},"excerpt":{"rendered":"

    UPDATE: I have intentionally cross-posted this to my SIRA blog since the combined wit & intelligence of the folks there trumps anything I could do alone here. All the following newly-minted risk assessment types have been inspired by actual situations. Hopefully you get to stick to just the proper OCTAVE\/FAIR\/NIST\/etc. ones where you practice. HARA […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_post_was_ever_published":false,"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":true,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_memberships_contains_paid_content":false,"activitypub_content_warning":"","activitypub_content_visibility":"","activitypub_max_image_attachments":3,"activitypub_interaction_policy_quote":"anyone","activitypub_status":"","footnotes":""},"categories":[67,4,66],"tags":[339,416,417,411,413,414,735,415,409,410,412],"class_list":["post-523","post","type-post","status-publish","format-standard","hentry","category-humor","category-risk","category-risk-assessment","tag-actuarial-science","tag-assessment","tag-evaluation","tag-manager","tag-occupational-safety-and-health","tag-public-health","tag-risk","tag-risk-assessment-2","tag-rlraa","tag-senior-executive","tag-senior-manager"],"yoast_head":"\nRLRAA - Real Life Risk Assessment Acronyms - rud.is<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"RLRAA - Real Life Risk Assessment Acronyms - rud.is\" \/>\n<meta property=\"og:description\" content=\"UPDATE: I have intentionally cross-posted this to my SIRA blog since the combined wit & intelligence of the folks there trumps anything I could do alone here. All the following newly-minted risk assessment types have been inspired by actual situations. Hopefully you get to stick to just the proper OCTAVE\/FAIR\/NIST\/etc. ones where you practice. HARA […]\" \/>\n<meta property=\"og:url\" content=\"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/\" \/>\n<meta property=\"og:site_name\" content=\"rud.is\" \/>\n<meta property=\"article:published_time\" content=\"2011-04-18T16:09:24+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2017-03-27T14:24:01+00:00\" \/>\n<meta name=\"author\" content=\"hrbrmstr\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"hrbrmstr\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/\"},\"author\":{\"name\":\"hrbrmstr\",\"@id\":\"https:\/\/rud.is\/b\/#\/schema\/person\/d7cb7487ab0527447f7fda5c423ff886\"},\"headline\":\"RLRAA – Real Life Risk Assessment Acronyms\",\"datePublished\":\"2011-04-18T16:09:24+00:00\",\"dateModified\":\"2017-03-27T14:24:01+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/\"},\"wordCount\":515,\"commentCount\":1,\"publisher\":{\"@id\":\"https:\/\/rud.is\/b\/#\/schema\/person\/d7cb7487ab0527447f7fda5c423ff886\"},\"keywords\":[\"Actuarial science\",\"Assessment\",\"Evaluation\",\"manager\",\"Occupational safety and health\",\"Public health\",\"Risk\",\"Risk assessment\",\"RLRAA\",\"senior executive\",\"senior manager\"],\"articleSection\":[\"Humor\",\"Risk\",\"Risk Assessment\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/\",\"url\":\"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/\",\"name\":\"RLRAA - Real Life Risk Assessment Acronyms - rud.is\",\"isPartOf\":{\"@id\":\"https:\/\/rud.is\/b\/#website\"},\"datePublished\":\"2011-04-18T16:09:24+00:00\",\"dateModified\":\"2017-03-27T14:24:01+00:00\",\"breadcrumb\":{\"@id\":\"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/rud.is\/b\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"RLRAA – Real Life Risk Assessment Acronyms\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/rud.is\/b\/#website\",\"url\":\"https:\/\/rud.is\/b\/\",\"name\":\"rud.is\",\"description\":\""In God we trust. All others must bring data"\",\"publisher\":{\"@id\":\"https:\/\/rud.is\/b\/#\/schema\/person\/d7cb7487ab0527447f7fda5c423ff886\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/rud.is\/b\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":[\"Person\",\"Organization\"],\"@id\":\"https:\/\/rud.is\/b\/#\/schema\/person\/d7cb7487ab0527447f7fda5c423ff886\",\"name\":\"hrbrmstr\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/i0.wp.com\/rud.is\/b\/wp-content\/uploads\/2023\/10\/ukr-shield.png?fit=460%2C460&ssl=1\",\"url\":\"https:\/\/i0.wp.com\/rud.is\/b\/wp-content\/uploads\/2023\/10\/ukr-shield.png?fit=460%2C460&ssl=1\",\"contentUrl\":\"https:\/\/i0.wp.com\/rud.is\/b\/wp-content\/uploads\/2023\/10\/ukr-shield.png?fit=460%2C460&ssl=1\",\"width\":460,\"height\":460,\"caption\":\"hrbrmstr\"},\"logo\":{\"@id\":\"https:\/\/i0.wp.com\/rud.is\/b\/wp-content\/uploads\/2023\/10\/ukr-shield.png?fit=460%2C460&ssl=1\"},\"description\":\"Don't look at me\u2026I do what he does \u2014 just slower. #rstats avuncular \u2022 ?Resistance Fighter \u2022 Cook \u2022 Christian \u2022 [Master] Chef des Donn\u00e9es de S\u00e9curit\u00e9 @ @rapid7\",\"sameAs\":[\"http:\/\/rud.is\"],\"url\":\"https:\/\/rud.is\/b\/author\/hrbrmstr\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"RLRAA - Real Life Risk Assessment Acronyms - rud.is","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/","og_locale":"en_US","og_type":"article","og_title":"RLRAA - Real Life Risk Assessment Acronyms - rud.is","og_description":"UPDATE: I have intentionally cross-posted this to my SIRA blog since the combined wit & intelligence of the folks there trumps anything I could do alone here. All the following newly-minted risk assessment types have been inspired by actual situations. Hopefully you get to stick to just the proper OCTAVE\/FAIR\/NIST\/etc. ones where you practice. HARA […]","og_url":"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/","og_site_name":"rud.is","article_published_time":"2011-04-18T16:09:24+00:00","article_modified_time":"2017-03-27T14:24:01+00:00","author":"hrbrmstr","twitter_card":"summary_large_image","twitter_misc":{"Written by":"hrbrmstr","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/#article","isPartOf":{"@id":"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/"},"author":{"name":"hrbrmstr","@id":"https:\/\/rud.is\/b\/#\/schema\/person\/d7cb7487ab0527447f7fda5c423ff886"},"headline":"RLRAA – Real Life Risk Assessment Acronyms","datePublished":"2011-04-18T16:09:24+00:00","dateModified":"2017-03-27T14:24:01+00:00","mainEntityOfPage":{"@id":"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/"},"wordCount":515,"commentCount":1,"publisher":{"@id":"https:\/\/rud.is\/b\/#\/schema\/person\/d7cb7487ab0527447f7fda5c423ff886"},"keywords":["Actuarial science","Assessment","Evaluation","manager","Occupational safety and health","Public health","Risk","Risk assessment","RLRAA","senior executive","senior manager"],"articleSection":["Humor","Risk","Risk Assessment"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/","url":"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/","name":"RLRAA - Real Life Risk Assessment Acronyms - rud.is","isPartOf":{"@id":"https:\/\/rud.is\/b\/#website"},"datePublished":"2011-04-18T16:09:24+00:00","dateModified":"2017-03-27T14:24:01+00:00","breadcrumb":{"@id":"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/rud.is\/b\/2011\/04\/18\/rlraa-real-life-risk-assessment-acronyms\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/rud.is\/b\/"},{"@type":"ListItem","position":2,"name":"RLRAA – Real Life Risk Assessment Acronyms"}]},{"@type":"WebSite","@id":"https:\/\/rud.is\/b\/#website","url":"https:\/\/rud.is\/b\/","name":"rud.is","description":""In God we trust. All others must bring data"","publisher":{"@id":"https:\/\/rud.is\/b\/#\/schema\/person\/d7cb7487ab0527447f7fda5c423ff886"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/rud.is\/b\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":["Person","Organization"],"@id":"https:\/\/rud.is\/b\/#\/schema\/person\/d7cb7487ab0527447f7fda5c423ff886","name":"hrbrmstr","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/i0.wp.com\/rud.is\/b\/wp-content\/uploads\/2023\/10\/ukr-shield.png?fit=460%2C460&ssl=1","url":"https:\/\/i0.wp.com\/rud.is\/b\/wp-content\/uploads\/2023\/10\/ukr-shield.png?fit=460%2C460&ssl=1","contentUrl":"https:\/\/i0.wp.com\/rud.is\/b\/wp-content\/uploads\/2023\/10\/ukr-shield.png?fit=460%2C460&ssl=1","width":460,"height":460,"caption":"hrbrmstr"},"logo":{"@id":"https:\/\/i0.wp.com\/rud.is\/b\/wp-content\/uploads\/2023\/10\/ukr-shield.png?fit=460%2C460&ssl=1"},"description":"Don't look at me\u2026I do what he does \u2014 just slower. #rstats avuncular \u2022 ?Resistance Fighter \u2022 Cook \u2022 Christian \u2022 [Master] Chef des Donn\u00e9es de S\u00e9curit\u00e9 @ @rapid7","sameAs":["http:\/\/rud.is"],"url":"https:\/\/rud.is\/b\/author\/hrbrmstr\/"}]}},"jetpack_featured_media_url":"","jetpack_shortlink":"https:\/\/wp.me\/p23idr-8r","jetpack_likes_enabled":true,"jetpack-related-posts":[{"id":2425,"url":"https:\/\/rud.is\/b\/2013\/04\/10\/bahrain-egov-conference-risk-reality-slides\/","url_meta":{"origin":523,"position":0},"title":"Bahrain eGov Conference “Risk Reality” Slides","author":"hrbrmstr","date":"2013-04-10","format":false,"excerpt":"For those finding this post from the Bahrain eGov conference, I'd like to re-extend a hearty \"Thank you!\" for being one of most engaging, interactive and intelligent audiences I've ever experienced. I truly enjoyed talking with all of you. You can find the slides on my Dropbox [PDF] and please\u2026","rel":"","context":"In "Information Security"","block_context":{"text":"Information Security","link":"https:\/\/rud.is\/b\/category\/information-security\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1018,"url":"https:\/\/rud.is\/b\/2012\/05\/08\/is-your-organization-ready-for-a-risk-management-program\/","url_meta":{"origin":523,"position":1},"title":"Is Your Organization Ready For a Risk Management Program?","author":"hrbrmstr","date":"2012-05-08","format":false,"excerpt":"While the slides will be officially available from SIRA web site in the not-too-distant future\u2014complete with video (for all the talks)\u2014I figured it wouldn't hurt to put them up here as well. Keynote version PDF version My sincere thanks, again, to @jayjacobs and the SIRA board for allowing me to\u2026","rel":"","context":"In "Information Security"","block_context":{"text":"Information Security","link":"https:\/\/rud.is\/b\/category\/information-security\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":12630,"url":"https:\/\/rud.is\/b\/2020\/01\/21\/davos-2020-world-economic-forum-2020-global-risk-report-cyber-cliffs-notes\/","url_meta":{"origin":523,"position":2},"title":"Davos 2020 World Economic Forum 2020 Global Risk Report Cyber Cliffs Notes","author":"hrbrmstr","date":"2020-01-21","format":false,"excerpt":"Each year the World Economic Forum releases their Global Risk Report around the time of the annual Davos conference. This year's report is out and below are notes on the \"cyber\" content to help others speed-read through those sections (in the event you don't read the whole thing). Their expert\u2026","rel":"","context":"In "Cybersecurity"","block_context":{"text":"Cybersecurity","link":"https:\/\/rud.is\/b\/category\/cybersecurity\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":298,"url":"https:\/\/rud.is\/b\/2011\/03\/07\/behind-the-mask-supporting-the-new-cio-personas\/","url_meta":{"origin":523,"position":3},"title":"Behind The Mask : Supporting The New CIO Personas","author":"hrbrmstr","date":"2011-03-07","format":false,"excerpt":"This morning, @joshcorman linked to an article in the Harvard Business Review \"The Conversation\" blog that put forth the author's view of The Four Personas of the Next-Genereation CIO. The term persona is very Jungian and literally refers to \"masks worn by a mime\". According to Jung, the persona \"enables\u2026","rel":"","context":"In "Compliance"","block_context":{"text":"Compliance","link":"https:\/\/rud.is\/b\/category\/compliance\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":1078,"url":"https:\/\/rud.is\/b\/2012\/05\/22\/new-securid-soft-token-cloning-weakness-whats-the-risk\/","url_meta":{"origin":523,"position":4},"title":"New SecurID Soft Token Cloning Weakness : What’s The Risk?","author":"hrbrmstr","date":"2012-05-22","format":false,"excerpt":"I posted a link to Twitter earlier on a recent discovery of the ability to clone RSA SecurID soft tokens: It (rightfully so) received some critical responses by @wh1t3rabbit & @wikidsystems since, apart from what the hypesters may say, this is a low-risk weakness. Think about it. Just looking at\u2026","rel":"","context":"In "Information Security"","block_context":{"text":"Information Security","link":"https:\/\/rud.is\/b\/category\/information-security\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":2896,"url":"https:\/\/rud.is\/b\/2014\/02\/09\/data-driven-security-roundup-betapert-shiny-honeypots-passwords-reproducible-research\/","url_meta":{"origin":523,"position":5},"title":"Data Driven Security Roundup: betaPERT, Shiny, Honeypots, Passwords & Reproducible Research","author":"hrbrmstr","date":"2014-02-09","format":false,"excerpt":"Jay Jacobs (@jayjacobs)\u2014my co-author of the soon-to-be-released book [Data-Driven Security](http:\/\/amzn.to\/ddsec)\u2014& I have been hard at work over at the book's [sister-blog](http:\/\/dds.ec\/blog) cranking out code to help security domain experts delve into the dark art of data science. We've covered quite a bit of ground since January 1st, but I'm using\u2026","rel":"","context":"In "Data Analysis"","block_context":{"text":"Data Analysis","link":"https:\/\/rud.is\/b\/category\/data-analysis-2\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/rud.is\/b\/wp-json\/wp\/v2\/posts\/523","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/rud.is\/b\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/rud.is\/b\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/rud.is\/b\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/rud.is\/b\/wp-json\/wp\/v2\/comments?post=523"}],"version-history":[{"count":0,"href":"https:\/\/rud.is\/b\/wp-json\/wp\/v2\/posts\/523\/revisions"}],"wp:attachment":[{"href":"https:\/\/rud.is\/b\/wp-json\/wp\/v2\/media?parent=523"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/rud.is\/b\/wp-json\/wp\/v2\/categories?post=523"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/rud.is\/b\/wp-json\/wp\/v2\/tags?post=523"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}