URI: H.A.H.5
Package: Network
< prev | next >
Description: Software bug crashes Host: a software bug in the operating system of device Host causes it to crash, compromising availability.
Threat Type: Primary Threat
Matching Pattern:
Finds a solo Host, with optionally its manager(s) and interactive user(s).
(empty)
Loss of availability at Host affects Process: if device Host becomes unavailable, so will the process Process hosted there.
CSG-AutomatedHostFaultRecovery
Faulty instances of the virtual device Host can be detected by monitoring, halted, and a replacement provisioned automatically.
CSG-BugFixingAtHost
Use a systematic procedure for regular updating of software used (including hosted processes) on device Host, and have a contingency plan included in the system operating policies and practices for HostManager to manually apply updates immediately should the need for them become urgent.
CSG-BugFixingAtHost-Implementation
Represents a situation in which software patches have been applied manually by HostManager to address functional bugs in device Host. This strategy represents activation of a contingency plan at runtime, and can be selected to discover what effect this would have on risk levels, allowing this to be used for decision support calculations. Note that this should only be considered if a suitable software patch is available. To implement this at runtime, signal the responsible user HostManager. Then deselect the SoftwarePatched control and restore the asserted Intrinsic TWL of Host once the update has been confirmed.
CSG-ManagerHostFaultRecovery
The device Host is monitored for reliability or availability, and if problems are found, its manager HostManager can take corrective action while waiting for updated software or hardware. This strategy represents a contingency plan included in the system operating policies and practices, e.g. to roll back software to an older but more reliable version or switch to a stand-in device from a different hardware vendor.
CSG-ManagerHostFaultRecovery-Implementation-Runtime
The device Host was found to have reliability or availability issues, and action has been taken by its manager HostManager to correct the problem. This strategy represents activation of a contingency plan at runtime, and can be selected to discover what effect this would have on risk levels, allowing this to be used for decision support calculations. To implement the plan at runtime, signal HostManager that the problem was detected with Host.
CSG-SoftwareTestingOfHost
The hardware and software for device Host has been independently tested and verified to meet functional requirements. The device is therefore unlikely to contain bugs that cause a malfunction. This does not prevent bugs that are present from causing problems, so this is a prior mitigation only which is ignored in current (run-time) risk calculations.