Threat P.L.HuiPCHS.3.1

URI: P.L.HuiPCHS.3.1

Package: Network

< prev | next >

Description: Console access to unprotected account running Process on device Host in Space: an attacker with access to the physical space Space where the device is located uses console access to get access via an unprotected user account with the rights of process Process.

Threat Type: Primary Threat

Matching Pattern:

P.L.HuiPCHS.3.1
MP-HuiPCHS

Finds a Human interacting with a Process running on a fixed Host located in a space, plus associated process access contexts.

        (empty)

        (empty)

        (empty)

CSG-BiometricAccessControlAtHost

Access to device Host is controlled, by authenticating authorised users using biometrics.

CSG-ChipAndPinAccessControlAtHost

Access to device Host is controlled, by authenticating authorised users using a 2-factor system involving possession of a physical key or dongle, such as a chip and PIN card.

CSG-IgnorePhysicalThreatsFromWorld

Indicates that threats from as well as to the space Space can be ignored, i.e. that the risk model intentionally does not consider physical attacks from Space. This is only permitted if Space is the inferred global public space (the World) used when no locations are asserted in the model. This control strategy is a way to specify that physical security is out of scope for devices with no explicitly specified location(s), i.e. that they are considered physically secure.

CSG-PasswordChecksAtHost

Access to device Host is controlled, by authenticating authorised users using a password.

CSG-PersonalDeviceProtection

Device Host is a personal device dedicated to one user, who will protect it from some types of attacks involving physical access. This particular strategy relates to threats that are blocked, affording slightly less than perfect protection because the user may be overcome by force or become temporarily less than vigilant.