Threat P.A.PcPuDS-V.6

URI: P.A.PcPuDS-V.6

Description: Process Client cannot access input Data from Service due to inconsistent encryption: processes Client and Service both access a copy of Data stored in encrypted form, so they need a secure way to also share the cryptographic keys used.

Threat Type: Primary Threat

Matching Pattern:

MP-PcPuDS-V

Finds two distinct processes accessing the same stored copy of data not encrypted with keys from a vault, one of which reads the data (processes it as a necessary input).

(empty)

DF.A.CC-iDFC-SS.0

Flow of data Data from FlowsFrom to FlowsTo interrupted by unavailable process Client: if process Client is not available then it will be unable to initiate or forward the flow of Data between FlowsFrom to FlowsTo.

CSG-DistinctProcessAccessKeys

LossOfAvailability at Role_Client

CSG-SharedKeyManagement

Processes Client and Service have secure access to a shared key used to encrypt and decrypt data Data for transfer via file or network.

Threat P.A.PcPuDS-V.6

MP-PcPuDS-V

Triggered by Threat (0)

Triggers Secondary Threats (1)

DF.A.CC-iDFC-SS.0

Triggered By Control Strategy (1)

Misbehaviour Sets (1)

Control Strategies (1)