CAPEC-546: Incomplete Data Deletion in a Multi-Tenant Environment
CAPEC版本: 3.9
更新日期: 2023-01-24
攻击模式描述
An adversary obtains unauthorized information due to insecure or incomplete data deletion in a multi-tenant environment. If a cloud provider fails to completely delete storage and data from former cloud tenants' systems/resources, once these resources are allocated to new, potentially malicious tenants, the latter can probe the provided resources for sensitive information still there.
前提条件
- The cloud provider must not assuredly delete part or all of the sensitive data for which they are responsible.The adversary must have the ability to interact with the system.
所需技能
后果影响
影响范围: Confidentiality
技术影响: Read Data
说明: A successful attack that probes application memory will compromise the confidentiality of that data.
缓解措施
Cloud providers should completely delete data to render it irrecoverable and inaccessible from any layer and component of infrastructure resources.
Deletion of data should be completed promptly when requested.