Threat DS.C.HPsACr-pDS-V.1

URI: DS.C.HPsACr-pDS-V.1

Description: Use of Process to access Data stored on Host: someone with the rights of Process on its host device Host can exploit the rights of Process to read and serve the locally stored copy of Data.

Threat Type: Primary Threat

Matching Pattern:

MP-HPsACr-pDS-V

Finds a host running a Process with read access (crudr) to a locally stored data copy not controlled by a key vault, which it does not process (i.e., it serves the data), plus the data access asset representing the data deserialization, the access contexts for the process on this host, any data fields included in the stored data, and optionally the host manager.

(empty)

Co.C.CoPD.0

Data leakage at controller Controller: if the control input data for a controller leaks, it is modelled as a loss of confidentiality for the controller.

Se.C.SePD.0

Data leakage at sensor Sensor: if the onboard data at a sensor leaks, it is modelled as a loss of confidentiality at the sensor.

(empty)

LossOfConfidentiality at Role_Data

LossOfConfidentiality at Role_DataCopy

LossOfConfidentiality at Role_DataField

CSG-DataStorageEncryption

The copy of Data stored on Host is encrypted.

Threat DS.C.HPsACr-pDS-V.1

MP-HPsACr-pDS-V

Triggered by Threat (0)

Triggers Secondary Threats (2)

Co.C.CoPD.0

Se.C.SePD.0

Triggered By Control Strategy (0)

Misbehaviour Sets (3)

Control Strategies (1)