Threat CC.AuS.CRoSI.3

URI: CC.AuS.CRoSI.3

Description: Spoofing network ToSubnet allows diversion of the connection of client Client to service Service to an imposter service: an attacker that has spoofed the network connection from Gateway to ToSubnet can divert messages from Client to Service so they go to a fake version of the service under their control.

Threat Type: Primary Threat

Matching Pattern:

MP-CRoSI

Finds a Service and its Host, a Client Channel from a legitimate Client and its Host, an Interface to a subnet on at least one path from the Client, and the Client Path from that Interface, and optionally the service manager and client user.

(empty)

ServiceImpersonation at Role_ClientChannel

ServiceImpersonation at Role_IndirectChannel

CSG-ServiceAuthN-X509

The client Client authenticates the service Service using an asymmetric cryptographic challenge against a public key registered to the service operator through a trusted means such as X509.

Threat CC.AuS.CRoSI.3

MP-CRoSI

Triggered by Threat (0)

Triggers Secondary Threats (0)

Triggered By Control Strategy (0)

Misbehaviour Sets (2)

Control Strategies (1)