Update UADT threat (b8020f25) · Commits · STAN4CRA / EN 304 626 Operating Systems

EN-304-626.md

+13 −13

Original line number	Diff line number	Diff line
		@@ -2006,18 +2006,18 @@ Mitigations for Impact:
		Attacker may use network access to get unauthorized access to confidential data transmitted by the product.

		\| Risk factors \| Likelihood \| Security profiles \|
		\|--------------\|------------\|------------------------------\|
		\| LIS = 0 \| Low \| WD-1, WD-2, WD-3, VI-1, VI-2 \|
		\| LIS = 1 \| Medium \| WL-1 \|
		\| LIS = 2 \| High \| WD-4, WL-2, WL-3 \|
		\|--------------\|------------\|----------------------------------------\|
		\| TNET = 0 \| Low \| LR, IoT-1 \|
		\| TNET = 1 \| Medium \| IoT-2, IoT-3, OT-1, WE-1 \|
		\| TNET = 2 \| High \| RO-1, MOB-1, PC-\, LA-\, PS-1, SE-\* \|

		\| Risk factors \| Impact \| Security profiles \|
		\|--------------\|--------\|--------------------\|
		\| SNDT = 0 \| Low \| none \|
		\| SNDT = 1 \| Medium \| WD-\, WL-\, VI-1 \|
		\| SNDT = 2 \| High \| VI-2 \|
		\|--------------\|--------\|----------------------------------------\|
		\| SNDT = 0 \| Low \| LR, IoT-1 \|
		\| SNDT = 1 \| Medium \| IoT-2, IoT-3, OT-1, WE-1 \|
		\| SNDT = 2 \| High \| RO-1, MOB-1, PC-\, LA-\, PS-1, SE-\* \|

		Requirements that mitigate this threat: CDTX, IDTX, DMIN
		Requirements that mitigate this threat: CDTX, DMIN

		Mitigations for Likelihood:

Original line number	Diff line number	Diff line
		@@ -2006,18 +2006,18 @@ Mitigations for Impact:
		Attacker may use network access to get unauthorized access to confidential data transmitted by the product.

		\| Risk factors \| Likelihood \| Security profiles \|
		\|--------------\|------------\|------------------------------\|
		\| LIS = 0 \| Low \| WD-1, WD-2, WD-3, VI-1, VI-2 \|
		\| LIS = 1 \| Medium \| WL-1 \|
		\| LIS = 2 \| High \| WD-4, WL-2, WL-3 \|
		\|--------------\|------------\|----------------------------------------\|
		\| TNET = 0 \| Low \| LR, IoT-1 \|
		\| TNET = 1 \| Medium \| IoT-2, IoT-3, OT-1, WE-1 \|
		\| TNET = 2 \| High \| RO-1, MOB-1, PC-\, LA-\, PS-1, SE-\* \|

		\| Risk factors \| Impact \| Security profiles \|
		\|--------------\|--------\|--------------------\|
		\| SNDT = 0 \| Low \| none \|
		\| SNDT = 1 \| Medium \| WD-\, WL-\, VI-1 \|
		\| SNDT = 2 \| High \| VI-2 \|
		\|--------------\|--------\|----------------------------------------\|
		\| SNDT = 0 \| Low \| LR, IoT-1 \|
		\| SNDT = 1 \| Medium \| IoT-2, IoT-3, OT-1, WE-1 \|
		\| SNDT = 2 \| High \| RO-1, MOB-1, PC-\, LA-\, PS-1, SE-\* \|

		Requirements that mitigate this threat: CDTX, IDTX, DMIN
		Requirements that mitigate this threat: CDTX, DMIN

		Mitigations for Likelihood: