Threat DS.C.HPsACrpDS-V.2

URI: DS.C.HPsACrpDS-V.2

Package: Theft

Description: Use of Process to access Data on stolen device Host: if an attacker can access Process on stolen device Host, they can use the rights of Process to read a local stored copy of Data.

Threat Type: Primary Threat

Matching Pattern:

MP-HPsACrpDS-V

Finds a host running a Process with read access (crudr) to a locally stored data copy not controlled by a key vault, which it also processes, plus the data access asset representing the data deserialization, the access contexts for the process on this host, any data fields included in the stored data, and optionally the host manager.

(empty)

Co.C.CoPD.0

Data leakage at controller Controller: if the control input data for a controller leaks, it is modelled as a loss of confidentiality for the controller.

Se.C.SePD.0

Data leakage at sensor Sensor: if the onboard data at a sensor leaks, it is modelled as a loss of confidentiality at the sensor.

(empty)

LossOfConfidentiality at Role_Data

LossOfConfidentiality at Role_DataCopy

LossOfConfidentiality at Role_DataField

CSG-EncryptedDataProcessing

Process Process uses homomorphic encryption technology to perform calculations on data Data in an encrypted domain, allowing it to process the data without first decrypting.

Threat DS.C.HPsACrpDS-V.2

MP-HPsACrpDS-V

Triggered by Threat (0)

Triggers Secondary Threats (2)

Co.C.CoPD.0

Se.C.SePD.0

Triggered By Control Strategy (0)

Misbehaviour Sets (3)

Control Strategies (1)