Threat CC.AuS.CACSScS.3.1

URI: CC.AuS.CACSScS.3.1

Description: Service Process spoofed to client Client by false redirection from Service: service Process authenticates clients by redirecting via authenticator Process. However, if Process is compromised, it may redirect clients back to the wrong service.

Threat Type: Primary Threat

Matching Pattern:

MP-CACSScS

Finds a channel between a client and a service, where authentication on this channel is controlled by authentication on another channel from the same client to a second service, along with the hosts of the client and the second service, plus optionally the client user and the managers of the second service and its host.

(empty)

ServiceImpersonation at Role_AuthChannel

(empty)

Threat CC.AuS.CACSScS.3.1

MP-CACSScS

Triggered by Threat (0)

Triggers Secondary Threats (0)

Triggered By Control Strategy (0)

Misbehaviour Sets (1)

Control Strategies (0)