Cybersecurity Ontology - University of New England

Definition

The property of being genuine and being able to be verified and trusted; confidence in the validity of a transmission, a message, or message originator.

ID: C083

Concept Relationships

Least Privilege providesService This concept

Multi-factor Authentication providesService This concept

Azure Active Directory providesService This concept

Authy providesService This concept

LastPass providesService This concept

1Password providesService This concept

Bitwarden providesService This concept

KeePass providesService This concept

TrickBot targetsService This concept

FormBook targetsService This concept

IcedID targetsService This concept

Mimikatz targetsService This concept

Hashcat providesService This concept

John the Ripper providesService This concept

Broken Authentication targetsService This concept

Privilege Escalation targetsService This concept

Insecure Direct Object References (IDOR) targetsService This concept

Missing Function Level Access Control targetsService This concept

Insufficient Logging targetsService This concept

HMAC (Hash-based Message Authentication Code) providesService This concept

Salting providesService This concept

Key Stretching providesService This concept

PBKDF2 (Password-Based Key Derivation Function 2) providesService This concept

Bcrypt providesService This concept

Scrypt providesService This concept

Argon2 providesService This concept

Access Control List (ACL) providesService This concept

PKI (Public Key Infrastructure) providesService This concept

Red Team providesService This concept

Backdoor targetsService This concept

Brute Force Attack targetsService This concept

Multi-Factor Authentication (MFA) providesService This concept

Password Hash providesService This concept

Two-Factor Authentication (2FA) providesService This concept

A07:2021-Identification and Authentication Failures targetsService This concept

API2:2019 Broken User Authentication targetsService This concept

Credential Stuffing targetsService This concept

T1055 Process Injection targetsService This concept

T1069 Permission Groups Discovery targetsService This concept

T1546 Event Triggered Execution targetsService This concept

T1003 OS Credential Dumping targetsService This concept

T1555 Credentials from Password Stores targetsService This concept

T1212 Exploitation for Credential Access targetsService This concept

T1056 Input Capture targetsService This concept

T1078 Valid Accounts targetsService This concept

T1201 Password Policy Discovery targetsService This concept

T1550 Use Alternate Authentication Material targetsService This concept

T1552 Unsecured Credentials targetsService This concept

T1110 Brute Force targetsService This concept

T1556 Modify Authentication Process targetsService This concept

T1111 Two-Factor Authentication Interception targetsService This concept

T1187 Forced Authentication targetsService This concept

Brute Force targetsService This concept

Terminology

Authenticity
preferred

Academic References

Rashid, A., Chivers, H., Danezis, G., Lupu, E., & Martin, A. (Eds.). (2021). The Cyber Security Body of Knowledge (CyBOK) Version 1.1. The National Cyber Security Centre. https://www.cybok.org

Authenticity

Definition

Concept Relationships