Threat H.M.HumHoSt.1

URI: H.M.HumHoSt.1

Description: Insider attack by HostManager abusing admin rights on Host: if the manager HostManager of device Host is untrustworthy, they can use their privileges to enable attacks involving Host.

Threat Type: Primary Threat

Matching Pattern:

MP-HumHoSt

Finds a Human managing a Host, and an optional employer of the Human.

(empty)

H.M.HmAC.0

Root access to Host in all contexts by unauthorized agents: if untrustworthy actors gain admin rights on a host, the best case trustworthiness of the host in any context is degraded.

H.M.HsAC.0

Root access to Host in any context by an unauthorized agent: if an untrustworthy actor gains admin rights on a host, the worst case trustworthiness of the host in any context is degraded.

(empty)

CSG-HostManagerScreening

Persons in the role HostManager responsible for managing Host are screened by their employer Employer before being given that role. This ensures they are more trustworthy than one would expect given the population or community from which they are recruited.

Threat H.M.HumHoSt.1

MP-HumHoSt

Triggered by Threat (0)

Triggers Secondary Threats (2)

H.M.HmAC.0

H.M.HsAC.0

Triggered By Control Strategy (0)

Misbehaviour Sets (0)

Control Strategies (1)