Threat CC.AuC.HuiHCCC-nS.3.3

URI: CC.AuC.HuiHCCC-nS.3.3

Package: ProcessComms

< prev | next >

Description: Shoulder surfing password for Client at Service from Host in Space: if user Human enters a password to client Client to access service Service when the client is running on host Host in insecure space Space, then an attacker could obtain the password by shoulder surfing.

Threat Type: Primary Threat

Matching Pattern:

CC.AuC.HuiHCCC-nS.3.3
MP-HuiHCCC-nS

Finds a Human using a Host to run a Process that is a Client of a Service, where the Client is authenticated by the Service.

        (empty)

        (empty)

CSG-ClientOneTimeKeyAuthentication

Access to service Service is controlled, by authenticating authorised users using a one time key created using a client-side authentication device provided to them.

CSG-ClientOutOfBandKeyAuthentication

Access to service Service is controlled, by authenticating authorised users using a password and a separate key sent to them via a separate (out of band) means.

CSG-PersonalDeviceProtection

Device Host is a personal device dedicated to one user, who will protect it from some types of attacks involving physical access. This particular strategy relates to threats that are blocked, affording slightly less than perfect protection because the user may be overcome by force or become temporarily less than vigilant.

CSG-UserSecurityTraining

Users in the role Human are trained to avoid most common cyber security errors by using only strong passwords, recognising malicious emails, and the importance of physical security including the use of screen locking for fixed devices that cannot be carried on the person.