Threat P.L.SHACPmAC.1

URI: P.L.SHACPmAC.1

Description: Use of admin privilege at Host via Space to control Process: someone with admin rights at device Host in location Space can control process Process hosted by that device in that context.

Threat Type: Primary Threat

Matching Pattern:

MP-SHACPmAC

Finds a process running on a shell host in a space and the host location access context, with all related process location and network access contexts where the host is normally in that location or connected to that network.

(empty)

P.L.HPmAC.0

Access to the rights of Process by unauthorized agents in all contexts : if untrustworthy actors gain access to Host with the rights of Process, the best case trustworthiness of its users in any context is degraded.

P.L.HPsAC.0

Access to the rights of Process by unauthorized agents in any context: if an untrustworthy actor gains access to Host with the rights of Process in any context, the worst case trustworthiness of its users in any context is degraded.

(empty)

CSG-ContinuousUserAuthentication	Access to process *Process* is controlled by authenticating user *Human* based on their registered usage characteristics captured by a personal device *Host*.
CSG-SecureProcessExecution	Uses hardware security on device *Host* to bootstrap a protected enclave in which *Process* can execute without interference even by someone with admin rights at *Host*.

Threat P.L.SHACPmAC.1

MP-SHACPmAC

Triggered by Threat (0)

Triggers Secondary Threats (2)

P.L.HPmAC.0

P.L.HPsAC.0

Triggered By Control Strategy (0)

Misbehaviour Sets (0)

Control Strategies (2)