-
Notifications
You must be signed in to change notification settings - Fork 40
/
authentication.html
42 lines (34 loc) · 2.5 KB
/
authentication.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
---
layout: threat-list
title: Authentication
---
<p>Authentication mechanisms are grouped within the three subcategories listed below. Note that individual credential and token types are not broken into their own categories and are instead included within one of these three categories.</p>
<p><b><a href="#user-device">User to Device</a>:</b> Mechanisms used by a user to authenticate with a mobile device, such as use of passwords, fingerprints, or voice recognition. This is most often local authentication to a device's lockscreen.</p>
<p><b><a href="#user-device-remote">User or Device to Remote Service</a>:</b> Mechanisms used by a user, or a distinct non-person entity (NPE), to remotely authenticate to an external process, service, or device.</p>
<p><b><a href="#user-device-network">User or Device to Network</a>:</b> Mechanisms used by a user, mobile device, or peripheral to authenticate to a network (e.g., Wi-Fi, Cellular). This commonly includes proving possession of a cryptographic token.</p>
<h2>Threat List</h2>
<h3 id="user-device">User to Device</h3>
<ul class="threat-list">
{% assign sorted = site.authentication-threats | sort:"rawID" %}
{% for authentication-threat in sorted %}
{% if authentication-threat.ThreatCategory == 'Authentication: User to Device' %}
<li><a href="{{ site.baseurl }}{{ authentication-threat.url }}">{{ authentication-threat.ID }}: {{ authentication-threat.Threat }} {% if authentication-threat.removed %}(DEPRECATED){% endif %}</a></li>
{% endif %}
{% endfor %}
</ul>
<h3 id="user-device-remote">User or Device to Remote Service</h3>
<ul class="threat-list">
{% for authentication-threat in sorted %}
{% if authentication-threat.ThreatCategory == 'Authentication: User or Device to Remote Service' %}
<li><a href="{{ site.baseurl }}{{ authentication-threat.url }}">{{ authentication-threat.ID }}: {{ authentication-threat.Threat }} {% if authentication-threat.removed %}(DEPRECATED){% endif %}</a></li>
{% endif %}
{% endfor %}
</ul>
<h3 id="user-device-network">User or Device to Network</h3>
<ul class="threat-list">
{% for authentication-threat in sorted %}
{% if authentication-threat.ThreatCategory == 'Authentication: User or Device to Network' %}
<li><a href="{{ site.baseurl }}{{ authentication-threat.url }}">{{ authentication-threat.ID }}: {{ authentication-threat.Threat }} {% if authentication-threat.removed %}(DEPRECATED){% endif %}</a></li>
{% endif %}
{% endfor %}
</ul>