Threat CC.AuS.CRoSG.3

URI: CC.AuS.CRoSG.3

Description: Spoofing of service Service to Client at gateway Gateway in Space: an attacker in control of gateway device Gateway in location Space where it handles messages sent from Client to Service, the attacker can divert these messages via a fake version of the service under their control.

Threat Type: Primary Threat

Matching Pattern:

MP-CRoSG

Finds a Service and its Host, a Client Channel from a legitimate Client and its Host, an Interface from a subnet to a Gateway host on at least one path from the Client, plus the Client Path from that subnet, and an access context for the gateway where it is on the relevant path, plus all service channels that relate to the client path, and optionally the service host manager and client user.

(empty)

ServiceImpersonation at Role_ClientChannel

ServiceImpersonation at Role_IndirectChannel

CSG-ServiceAuthN-X509

The client Client authenticates the service Service using an asymmetric cryptographic challenge against a public key registered to the service operator through a trusted means such as X509.

Threat CC.AuS.CRoSG.3

MP-CRoSG

Triggered by Threat (0)

Triggers Secondary Threats (0)

Triggered By Control Strategy (0)

Misbehaviour Sets (2)

Control Strategies (1)