Threat DF.C.ACDF-VTS-i.3.6

URI: DF.C.ACDF-VTS-i.3.6

Description: Compromised service Service reads the encrypted flow of Data from/via Client: if an attacker can compromise service Service, they can they can access its cryptographic key and read data Data flowing to Service from FlowsFrom.

Threat Type: Primary Threat

Matching Pattern:

MP-ACDF-VTS-i

Finds a data flow not encrypted with keys from a vault, flowing to a service from/via a client, plus the data, data access and any data fields, and the associated channel, where the connection is direct and not via any credential-sharing intermediaries.

(empty)

Co.C.CoPD.0

Data leakage at controller Controller: if the control input data for a controller leaks, it is modelled as a loss of confidentiality for the controller.

Se.C.SePD.0

Data leakage at sensor Sensor: if the onboard data at a sensor leaks, it is modelled as a loss of confidentiality at the sensor.

CSG-DataFlowEncryption

LossOfConfidentiality at Role_Data

LossOfConfidentiality at Role_DataField

LossOfConfidentiality at Role_DataFlow

CSG-EncryptedDataProcessingAtService

Process Service uses homomorphic encryption technology to perform calculations on data Data in an encrypted domain, allowing it to process the data without first decrypting.

Threat DF.C.ACDF-VTS-i.3.6

MP-ACDF-VTS-i

Triggered by Threat (0)

Triggers Secondary Threats (2)

Co.C.CoPD.0

Se.C.SePD.0

Triggered By Control Strategy (1)

Misbehaviour Sets (3)

Control Strategies (1)