CAPEC-474: Signature Spoofing by Key Theft

Detailed Draft 严重程度: High 攻击可能性: Medium

CAPEC版本: 3.9

更新日期: 2023-01-24

攻击模式描述

An attacker obtains an authoritative or reputable signer's private signature key by theft and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.

前提条件

An authoritative or reputable signer is storing their private signature key with insufficient protection.

所需技能

Low Knowledge of common location methods and access methods to sensitive data

High Ability to compromise systems containing sensitive data

缓解措施

Restrict access to private keys from non-supervisory accounts

Restrict access to administrative personnel and processes only

Ensure all remote methods are secured

Ensure all services are patched and up to date

分类映射

分类名称	条目ID	条目名称
ATTACK	1552.004	Unsecured Credentials: Private Keys

关键信息

CAPEC ID: CAPEC-474

抽象级别: Detailed

状态: Draft

典型严重程度: High

攻击可能性: Medium

CAPEC-474: Signature Spoofing by Key Theft

攻击模式描述

前提条件

所需技能

缓解措施

分类映射

关键信息

相关攻击模式

相关CWE弱点

CAPEC-474: Signature Spoofing by Key Theft

攻击模式描述

前提条件

所需技能

缓解措施

分类映射

关键信息

相关攻击模式

ChildOf CAPEC-473

相关CWE弱点