Control Strategy AutoSuspendUnauthenticClientAccess.Implementation

URI: CSG-AutoSuspendUnauthenticClientAccess-Implementation-Runtime

Description: Access to service Service by client Client has been automatically disabled to prevent authenticated attacks by impersonated clients. This strategy represents activation of a contingency plan at runtime, and can be selected to discover what effect this would have on risk levels, allowing this to be used for decision support calculations. Activation at runtime requires Service to be managed by a suitable adaptation framework. The Disable Client Access control should be deselected if and when access by Client to Service has been enabled once again.

(empty)

CSG-AutoSuspendUnauthenticClientAccess-Implementation-Runtime

CC.R.CCCS-i.1

Authenticated access as Client to service Service: anyone who has access to Service and can authenticate as Client can gain authenticated access to Service as Client.

CC.AX.CCCS.6.1

Disabled access by client Client to Service: access by client Client to service Service has been disabled to prevent communication threats. However, this also causes a loss of accessibility of the service from that client.

AutoDataGovernance at Role_Service

DisableClientAccess at Role_ClientChannel

SuspendUnauthenticClientAccess at Role_ClientChannel

Control Strategy AutoSuspendUnauthenticClientAccess.Implementation

Mitigated Threats (0)

Blocked Threats (1)

CC.R.CCCS-i.1

Triggers Threats (1)

CC.AX.CCCS.6.1

Control Sets (3)