Control Strategy SuspendUnauthenticClientAccess.Implementation

URI: CSG-SuspendUnauthenticClientAccess-Implementation-Runtime

Description: Access to service Service by client Client is disabled by the process manager ServiceManager to prevent authenticated attacks by impersonated clients. This strategy represents activation of a contingency plan at runtime, and can be selected to discover what effect this would have on risk levels, allowing this to be used for decision support calculations. To activate it at runtime, signal the process manager ServiceManager. The Disable Client Access control should be deselected if and when access by Client to Service has been enabled once again.

(empty)

CSG-SuspendUnauthenticClientAccess-Implementation-Runtime

CC.R.CCCS-i.1

Authenticated access as Client to service Service: anyone who has access to Service and can authenticate as Client can gain authenticated access to Service as Client.

CC.AX.CCCS.6.1

Disabled access by client Client to Service: access by client Client to service Service has been disabled to prevent communication threats. However, this also causes a loss of accessibility of the service from that client.

DisableClientAccess at Role_ClientChannel

SuspendUnauthenticClientAccess at Role_ClientChannel

SystemSecurityTraining at Role_ServiceManager

Control Strategy SuspendUnauthenticClientAccess.Implementation

Mitigated Threats (0)

Blocked Threats (1)

CC.R.CCCS-i.1

Triggers Threats (1)

CC.AX.CCCS.6.1

Control Sets (3)