CAPEC-624: Hardware Fault Injection
ID
CAPEC-624
Typical Severity
High
Likelihood Of Attack
Low
Status
Stable
The adversary uses disruptive signals or events, or alters the physical environment a device operates in, to cause faulty behavior in electronic devices. This can include electromagnetic pulses, laser pulses, clock glitches, ambient temperature extremes, and more. When performed in a controlled manner on devices performing cryptographic operations, this faulty behavior can be exploited to derive secret key information.
Weaknesses
# ID | Name | Type |
---|---|---|
CWE-1247 | Improper Protection Against Voltage and Clock Glitches | weakness |
CWE-1248 | Semiconductor Defects in Hardware Logic with Security-Sensitive Implications | weakness |
CWE-1256 | Improper Restriction of Software Interfaces to Hardware Features | weakness |
CWE-1319 | Improper Protection against Electromagnetic Fault Injection (EM-FI) | weakness |
CWE-1332 | Improper Handling of Faults that Lead to Instruction Skips | weakness |
CWE-1334 | Unauthorized Error Injection Can Degrade Hardware Redundancy | weakness |
CWE-1338 | Improper Protections Against Hardware Overheating | weakness |
CWE-1351 | Improper Handling of Hardware Behavior in Exceptionally Cold Environments | weakness |