T.Op.Disclosure.1
|
Medium
|
Likely
|
An entity views an information asset it is not authorized to view.
|
T.Op.Disclosure.2
|
Medium
|
Likely
|
An entity enters, edits, or imports content with attributes it does not have access to resulting in unauthorized disclosure.
|
T.Op.Disclosure.3
|
Medium
|
Likely
|
An entity improperly copies to the wrong ownership resulting in disclosure to a different set of entities prior to obtaining authorization to disseminate.
|
T.Op.Disclosure.4
|
Medium
|
Likely
|
An entity regrades to incorrect values in the access control attributes resulting in the unauthorized access to the information content resulting in disclosure. Incorrect values could be as a result of:
|
T.Op.Disclosure.5
|
Medium
|
Likely
|
An entity improperly publishes a document resulting in disclosure or exfiltration of information assets.
|
T.Op.Disclosure.6
|
Medium
|
Likely
|
An AMI entity improperly publishes a document to the wrong location resulting in disclosure or exfiltration of information assets.
|
T.Op.Disclosure.7
|
Medium
|
Likely
|
An AMI entity fails to delete all copies of an information object resulting in disclosure of information that may have been distributed (e.g., after publishing a document with incorrect information, he tries to delete, but the genie is out of the bottle; or had a bad delete list; or user forgot to select all objects that he intended to delete).
|
T.Op.Disclosure.8
|
High
|
Likely
|
An entity collects (e.g., signals intelligence SIGINT) unprotected (plaintext) content and unprotected object attributes and endorsements resulting in unauthorized disclosure.
|
T.Op.Disclosure.9
|
Medium
|
Likely
|
An entity executes a view function (decryption) on an object they are not authorized to access resulting in unauthorized disclosure.
|
T.Op.Disclosure.10
|
High
|
Likely
|
An entity collects (e.g., signals intelligence SIGINT, human intelligence HUMINT) unprotected (plaintext) content and unprotected object attributes and endorsements resulting in unauthorized disclosure.
|
T.Op.Disclosure.11
|
Medium
|
Likely
|
An entity executes an export function on an information object they are not authorized to export resulting in unauthorized disclosure.
|
T.Op.Disclosure.12
|
Medium
|
Likely
|
An entity executes an export function on an information object they are authorized to export to the wrong non-AMI network resulting in unauthorized disclosure.
|
T.Op.Disclosure.13
|
High
|
Likely
|
An AMI entity with access in a remote information system attempts to access AMI information objects in an unauthorized manner.
|
T.Op.Disclosure.14
|
Low
|
Unusual
|
An entity views unauthorized AMI directory structure resulting in unauthorized disclosure. (e.g. an unauthorized user is presented unauthorized directory names)
|
T.Op.Disclosure.15
|
Medium
|
Likely
|
An entity views an information asset it is not authorized to view because an authorized user viewed the information on an unauthorized component.
|
|
