Threat DS.C.HPsACr-pDS-V.1.6

URI: DS.C.HPsACr-pDS-V.1.6

Description: Use of compromised key at Process to access Data stored on Host: someone with the rights of Process on its host device Host can access the local encrypted copy of data Data by using a cryptographic key assigned to Process allowing it to serve the data.

Threat Type: Primary Threat

Matching Pattern:

MP-HPsACr-pDS-V

Finds a host running a Process with read access (crudr) to a locally stored data copy not controlled by a key vault, which it does not process (i.e., it serves the data), plus the data access asset representing the data deserialization, the access contexts for the process on this host, any data fields included in the stored data, and optionally the host manager.

(empty)

Co.C.CoPD.0

Data leakage at controller Controller: if the control input data for a controller leaks, it is modelled as a loss of confidentiality for the controller.

Se.C.SePD.0

Data leakage at sensor Sensor: if the onboard data at a sensor leaks, it is modelled as a loss of confidentiality at the sensor.

CSG-DataAccessKey

LossOfConfidentiality at Role_Data

LossOfConfidentiality at Role_DataCopy

LossOfConfidentiality at Role_DataField

(empty)

Threat DS.C.HPsACr-pDS-V.1.6

MP-HPsACr-pDS-V

Triggered by Threat (0)

Triggers Secondary Threats (2)

Co.C.CoPD.0

Se.C.SePD.0

Triggered By Control Strategy (1)

Misbehaviour Sets (3)

Control Strategies (0)