MitM and auth reflection on BMP (M-A1)

Description

MitM and auth reflection on BMP (M-A1)

Risk Assesment: 8.1

CWE

863

CVE

26560

Attack Surfaces

Bond Management (MITRE EMB3D PID-4113)

Provisioning

Authentication

Attack Vectors

Authentication challenge reflection (MITRE EMB3D TID-221)

Defenses

Restrict authentication procedure, Do not accept provisioning random and provisioning confirmation numbers from a remote peer that are the same as those selected by the local device.

ORSHIN Attack Defense Framework

MitM and auth reflection on BMP (M-A1)

Description

CWE

CVE

Attack Surfaces

Attack Vectors

Defenses