Threat LS.C.WiFiSSoH.3

URI: LS.C.WiFiSSoH.3

Description: Passive snooping in WiFi subnet LogicalSubnet from Space: if an attacker has physical access to WiFi subnet LogicalSubnet from Space, they can passively snoop traffic unless the network is encrypted.

Threat Type: Primary Threat

Matching Pattern:

MP-WiFiSSoH

Finds a WiFi subnet accessible from a Space, the network it implements, and optionally the host providing the subnet and service controlling access to it.

(empty)

CommsSnoopable at Role_RadioSubnet

CSG-IgnorePhysicalThreatsFromWorld

Indicates that threats from as well as to the space Space can be ignored, i.e. that the risk model intentionally does not consider physical attacks from Space. This is only permitted if Space is the inferred global public space (the World) used when no locations are asserted in the model. This control strategy is a way to specify that physical security is out of scope for devices with no explicitly specified location(s), i.e. that they are considered physically secure.

CSG-RadioSubnetEncryption

To prevent passive snooping in radio network LogicalSubnet, one can configure the network to use encrypted radio communication in LogicalSubnet.

Threat LS.C.WiFiSSoH.3

MP-WiFiSSoH

Triggered by Threat (0)

Triggers Secondary Threats (0)

Triggered By Control Strategy (0)

Misbehaviour Sets (1)

Control Strategies (2)