Loading EN-304-620-1.md +19 −15 Original line number Diff line number Diff line Loading @@ -896,13 +896,15 @@ Mitigations for Impact: * High to Medium: CRYPT-\*, SCDL-\*, ROUT-\*, AUTH-\* ### C.4.x TH-UNAA: Unauthorized attempts to authenticate ### C.4.x TH-UNAA: Unauthorized authentication Attacker may attempt to authenticate in an unauthorized manner to get access to product assets. | Risk factors | Likelihood | Security profiles | |--------------|------------|-------------------| | ADM = 2 | High | SP-\* | | ADM = 1 | Medium | none | | ADM = 0 | Low | none | |-------------------|------------|-------------------| | DAT = 2 & FUN = 2 | High | SP-3 | | all others | Medium | SP-2, SP-4 | | DAT = 0 & FUN = 0 | Low | SP-1 | | Risk factors | Impact | Security profiles | |-------------------|--------|-------------------| Loading @@ -916,21 +918,23 @@ Mitigations for Likelihood: * Medium to Low: AUTH-6 * High to Medium: AUTH-6 * High to Low: AUTH-6 Mitigations for Impact: * Medium to Low: AUTH-\*, LOGG-\* * Medium to Low: AUTH-3, LOGG-1 * High to Medium: AUTH-\*, LOGG-\* * High to Low: AUTH-3, AUTH-4, AUTH-5, LOGG-\* ### C.4.x TH-LDEL: Attacker deletes local logs to hide activity ### C.4.x TH-LDEL: Attacker removes evidence of compromise Attacker may remove evidence of compromise from the endpoint. | Risk factors | Likelihood | Security profiles | |--------------|------------|-------------------| | ADM = 2 | High | SP-\* | | ADM = 1 | Medium | none | | ADM = 0 | Low | none | |-------------------|------------|-------------------| | DAT = 2 & FUN = 2 | High | SP-3 | | all others | Medium | SP-2, SP-4 | | DAT = 0 & FUN = 0 | Low | SP-1 | | Risk factors | Impact | Security profiles | |-------------------|--------|-------------------| Loading Loading
EN-304-620-1.md +19 −15 Original line number Diff line number Diff line Loading @@ -896,13 +896,15 @@ Mitigations for Impact: * High to Medium: CRYPT-\*, SCDL-\*, ROUT-\*, AUTH-\* ### C.4.x TH-UNAA: Unauthorized attempts to authenticate ### C.4.x TH-UNAA: Unauthorized authentication Attacker may attempt to authenticate in an unauthorized manner to get access to product assets. | Risk factors | Likelihood | Security profiles | |--------------|------------|-------------------| | ADM = 2 | High | SP-\* | | ADM = 1 | Medium | none | | ADM = 0 | Low | none | |-------------------|------------|-------------------| | DAT = 2 & FUN = 2 | High | SP-3 | | all others | Medium | SP-2, SP-4 | | DAT = 0 & FUN = 0 | Low | SP-1 | | Risk factors | Impact | Security profiles | |-------------------|--------|-------------------| Loading @@ -916,21 +918,23 @@ Mitigations for Likelihood: * Medium to Low: AUTH-6 * High to Medium: AUTH-6 * High to Low: AUTH-6 Mitigations for Impact: * Medium to Low: AUTH-\*, LOGG-\* * Medium to Low: AUTH-3, LOGG-1 * High to Medium: AUTH-\*, LOGG-\* * High to Low: AUTH-3, AUTH-4, AUTH-5, LOGG-\* ### C.4.x TH-LDEL: Attacker deletes local logs to hide activity ### C.4.x TH-LDEL: Attacker removes evidence of compromise Attacker may remove evidence of compromise from the endpoint. | Risk factors | Likelihood | Security profiles | |--------------|------------|-------------------| | ADM = 2 | High | SP-\* | | ADM = 1 | Medium | none | | ADM = 0 | Low | none | |-------------------|------------|-------------------| | DAT = 2 & FUN = 2 | High | SP-3 | | all others | Medium | SP-2, SP-4 | | DAT = 0 & FUN = 0 | Low | SP-1 | | Risk factors | Impact | Security profiles | |-------------------|--------|-------------------| Loading
