| Capability ID | Capability Description | Mapping Type | ATT&CK ID | ATT&CK Name | Notes |
|---|---|---|---|---|---|
| EX.MM-01.01 | Third-party monitoring and management resources | Mitigates | T1199 | Trusted Relationship |
Comments
This diagnostic statement provides for the implementation of procedures for management of third party products. Managing accounts and permissions used by parties in trusted relationships helps minimize potential abuse by the party or if the party is compromised by an adversary.
|
| EX.MM-01.01 | Third-party monitoring and management resources | Mitigates | T1525 | Implant Internal Image |
Comments
This diagnostic statement provides for the implementation of procedures for management of third party products such as ensuring cloud service providers support content trust models that require container images be signed by trusted source.
|
| EX.MM-01.01 | Third-party monitoring and management resources | Mitigates | T1530 | Data from Cloud Storage |
Comments
This diagnostic statement provides for the implementation of procedures for management of third party products such as cloud storage solutions.
|
| EX.MM-01.01 | Third-party monitoring and management resources | Mitigates | T1195.003 | Compromise Hardware Supply Chain |
Comments
This diagnostic statement protects against Supply Chain Compromise through the implementation of procedures for management of third party products.
|
| EX.MM-01.01 | Third-party monitoring and management resources | Mitigates | T1601 | Modify System Image |
Comments
This diagnostic statement provides for the implementation of procedures for management of third party products such as vendor provided digitally signed operating system images to validate the integrity of the software used on their platform.
|
| EX.MM-01.01 | Third-party monitoring and management resources | Mitigates | T1601.001 | Patch System Image |
Comments
This diagnostic statement provides for the implementation of procedures for management of third party products such as vendor provided digitally signed operating system images to validate the integrity of the software used on their platform.
|
| EX.MM-01.01 | Third-party monitoring and management resources | Mitigates | T1601.002 | Downgrade System Image |
Comments
This diagnostic statement provides for the implementation of procedures for management of third party products such as vendor provided digitally signed operating system images to validate the integrity of the software used on their platform.
|
| EX.MM-01.01 | Third-party monitoring and management resources | Mitigates | T1554 | Compromise Host Software Binary |
Comments
This diagnostic statement provides for the implementation of procedures for management of third party products such as ensuring the authenticity and integrity of software.
|
| EX.MM-01.01 | Third-party monitoring and management resources | Mitigates | T1195 | Supply Chain Compromise |
Comments
This diagnostic statement protects against Supply Chain Compromise through the implementation of procedures for management of third party products.
|
| EX.MM-01.01 | Third-party monitoring and management resources | Mitigates | T1195.002 | Compromise Software Supply Chain |
Comments
This diagnostic statement protects against Supply Chain Compromise through the implementation of procedures for management of third party products.
|
| EX.MM-01.01 | Third-party monitoring and management resources | Mitigates | T1195.001 | Compromise Software Dependencies and Development Tools |
Comments
This diagnostic statement protects against Supply Chain Compromise through the implementation of procedures for management of third party products.
|