[A.11] Unauthorised access

Types of assets:

·         [D] data / information

·         [keys] cryptographic keys

·         [S] services

·         [SW] software

·         [HW] computer equipment (hardware)

·         [COM] communication networks

·         [Media] media

·         [AUX] auxiliary equipment

·         [L] installations

Dim1nsiones:

1.   [C] confidentiality

2.   [I] integrity

Description:

The attacker manages to access the system’s resources without authorisation for doing so,  typically taking advantage of a failure in the identification and authorisation system.

See:

EBIOS: 33 - UNAUTHORISED USE OF EQUIPMENT