Threat LS.L.VSPSH.1

URI: LS.L.VSPSH.1

Description: Using admin rights at Gateway to enable access to LogicalSubnet from PhysicalSubnet: if someone has control of device Gateway providing virtual subnet LogicalSubnet, and access to the underlying physical subnet PhysicalSubnet, they can connect their own device to the virtual subnet.

Threat Type: Primary Threat

Matching Pattern:

MP-VSPSH

Finds a Virtual Subnet provided by a gateway host using a Physical Subnet to route at least one host-host connection, and optionally the process controlling the virtual subnet, and the manager of the gateway.

(empty)

LossOfNetworkUserTW at Role_LogicalSubnet

CSG-DisableGatewayHost-Runtime

Device Gateway is disabled to prevent it being involved in an attack. This strategy represents a run-time adaptation in response to a threat, which may or may not be following some contingency plan. It also triggers threats representing side effects that would be caused by such an action.

Threat LS.L.VSPSH.1

MP-VSPSH

Triggered by Threat (0)

Triggers Secondary Threats (0)

Triggered By Control Strategy (0)

Misbehaviour Sets (1)

Control Strategies (1)