Threat DS.Auth.HsACDS-V.1.3

URI: DS.Auth.HsACDS-V.1.3

Description: Use of user privileges at Host to alter Data stored on Host: anyone with user privileges at Host can alter copies of Data stored on the Host, introducing malicious content designed to subvert anyone or anything using the data.

Threat Type: Primary Threat

Matching Pattern:

MP-HsACDS-V

Finds a stored copy of Data on a Host that is not encrypted using keys from a vault, plus location contexts in which the host is accessible.

(empty)

DF.Auth.HPDSDADF.0

Service Process serves an unauthentic stored copy of data Data to FlowsTo: if the locally stored copy of Data on Host served by Process is unauthentic, so will the flow of Data served to FlowsTo.

Co.M.CoPDS.0

Loss of control due to compromised input at controller Controller: if the onboard data received by the onboard control process at a controller is not authentic, the attacker can assume control, which is represented as loss of control over the controller.

(empty)

LossOfAuthenticity at Role_Data

LossOfAuthenticity at Role_DataCopy

CSG-DataAccessControl	The host device *Host* enforces an access control policy for a stored copy of *Data*.
CSG-DataStorageIntegrityProtection	Makes it possible to check if the stored copy of *Data* on *Host* has been altered by an unauthorised process.

Threat DS.Auth.HsACDS-V.1.3

MP-HsACDS-V

Triggered by Threat (0)

Triggers Secondary Threats (2)

DF.Auth.HPDSDADF.0

Co.M.CoPDS.0

Triggered By Control Strategy (0)

Misbehaviour Sets (2)

Control Strategies (2)