CAPEC-521 - Hardware Design Specifications Are Altered

An attacker with access to a manufacturer's hardware manufacturing process documentation alters the design specifications, which introduces flaws advantageous to the attacker once the system is deployed.

Severity

Likelihood

Confidentiality

Integrity

Availability

High level: Ability to read, interpret, and subsequently alter manufacturer's documentation to cause errors in design specifications.

High level: Ability to stealthly gain access via remote compromise or physical access to the manufacturer's documentation.

Advanced knowledge of hardware capabilities of a manufacturer's product.

Access to the manufacturer's documentation.

Associated CAPEC(s) 1 CAPEC-438 - Integrity Modification During Manufacture

Associated Referencs(s) 1 Supply Chain Attack Framework and Attack Patterns