Google Cloud Certificate Authority Service (CAS) is a highly available & scalable service that enables users to simplify, automate, and customize the deployment, management, and security of private certificate authorities (CA).
| Capability ID | Capability Description | Category | Value | ATT&CK ID | ATT&CK Name | Notes |
|---|---|---|---|---|---|---|
| certificate_authority_service | Certificate Authority Service | protect | significant | T1557 | Adversary-in-the-Middle |
Comments
This control may mitigate against Adversary-in-the-Middle by providing certificates for internal endpoints and applications to use with asymmetric encryption. This control may also provide authentication for user identity for VPN or zero trust networking.
References
|
| certificate_authority_service | Certificate Authority Service | protect | minimal | T1040 | Network Sniffing |
Comments
This control may mitigate against Network Sniffing by providing certificates for internal endpoints and applications to use with asymmetric encryption. This control helps protect the issuing Certificate Authority with the use of Google's IAM and policy controls.
References
|