Threat CC.AuC.CACHLSS.2

URI: CC.AuC.CACHLSS.2

Package: Theft

Description: Client Client on stolen host CHost used to access Service via LogicalSubnet: if an attacker in possession of stolen device CHost can control the installed client Client when CHost is connected to LogicalSubnet, the attacker can use Client to access Service using a privileged network path, thus acting as a false (impersonated) client.

Threat Type: Primary Threat

Matching Pattern:

MP-CACHLSS

Finds a service that is not acting as a reverse proxy accessed by a client and an associated context for access from the client via a subnet to which it need not normally be connected, plus the two process hosts and optionally the client user and service manager.

(empty)

ClientImpersonation at Role_ClientChannel

CSG-ClientContinuousAuthentication

Access to service Service is controlled by authenticating user Human based on their registered usage characteristics captured by the device CHost.

Threat CC.AuC.CACHLSS.2

MP-CACHLSS

Triggered by Threat (0)

Triggers Secondary Threats (0)

Triggered By Control Strategy (0)

Misbehaviour Sets (1)

Control Strategies (1)