| Capability ID | Capability Description | Category | Value | ATT&CK ID | ATT&CK Name | Notes |
|---|---|---|---|---|---|---|
| cloud_hardware_security_module_(hsm) | Cloud Hardware Security Module (HSM) | protect | partial | T1552 | Unsecured Credentials |
Comments
Google Cloud's HSM may protect against adversary's attempts to leverage unsecured credentials found on compromised systems. Variations of this technique are difficult to mitigate, so a partial score was granted for this control's medium to high coverage factor.
References
|
| cloud_hardware_security_module_(hsm) | Cloud Hardware Security Module (HSM) | protect | partial | T1553 | Subvert Trust Controls |
Comments
Google Cloud's HSM may protect against adversary's attempts to undermine trusted controls and conduct nefarious activity or execute malicious programs. Variations of this technique are difficult to mitigate, so a partial score was granted for this control's medium to high coverage factor.
References
|
| cloud_hardware_security_module_(hsm) | Cloud Hardware Security Module (HSM) | protect | partial | T1588.003 | Code Signing Certificates |
Comments
Google Cloud's HSM may protect against adversary's attempts to compromise code signing certificates that can used during targeting to run compromised code and other tampered executables. Variations of this technique are difficult to mitigate, so a partial score was granted for this control's medium to high coverage factor.
References
|
| cloud_hardware_security_module_(hsm) | Cloud Hardware Security Module (HSM) | protect | partial | T1588.004 | Digital Certificates |
Comments
Google Cloud's HSM may protect against adversary's attempts to compromise digital certificates that can used to encrypt data-in-transit or tamper with the certificate owner's communications. Variations of this technique are difficult to mitigate, so a partial score was granted for this control's medium to high coverage factor.
References
|
| cloud_hardware_security_module_(hsm) | Cloud Hardware Security Module (HSM) | protect | partial | T1552.004 | Private Keys |
Comments
Google Cloud's HSM may protect against adversary's attempts to compromise private key certificate files (e.g., .key, .pgp, .ppk, .p12). Variations of this technique are difficult to mitigate, so a partial score was granted for this control's medium to high coverage factor.
References
|
| cloud_hardware_security_module_(hsm) | Cloud Hardware Security Module (HSM) | protect | partial | T1552.001 | Credentials In Files |
Comments
Google Cloud's HSM may protect against adversary's attempts to leverage passwords and unsecure credentials found in files on compromised systems.Variations of this technique are difficult to mitigate, so a partial score was granted for this control's medium to high coverage factor.
References
|
| cloud_hardware_security_module_(hsm) | Cloud Hardware Security Module (HSM) | protect | partial | T1588 | Obtain Capabilities |
Comments
Google Cloud's HSM may protect against adversary's attempts to obtain capabilities by compromising code signing certificates that will be used to run compromised code and other tampered executables. Variations of this technique are difficult to mitigate, so a partial score was granted for this control's medium to high coverage factor.
References
|