Home > CAPEC List > CAPEC-156: Engage in Deceptive Interactions (Version 2.11)  

CAPEC CATEGORY: Engage in Deceptive Interactions

Engage in Deceptive Interactions
Definition in a New Window Definition in a New Window
Category ID: 156
Status: Stable
+ Description


Attack patterns within this category focus on malicious interactions with a target in an attempt to deceive the target and convince the target that it is interacting with some other principal and as such take actions based on the level of trust that exists between the target and the other principal. These types of attacks assume that some piece of content or functionality is associated with an identity and that the content / functionality is trusted by the target because of this association. Often identified by the term "spoofing", these types of attacks rely on the falsification of the content and/or identity in such a way that the target will incorrectly trust the legitimacy of the content. For example, an attacker may modify a financial transaction between two parties so that the participants remain unchanged but the amount of the transaction is increased. If the recipient cannot detect the change, they may incorrectly assume the modified message originated with the original sender. Attacks of these type may involve an adversary crafting the content from scratch or capturing and modifying legitimate content.
+ Relationships
NatureTypeIDNameView(s) this relationship pertains toView(s)
HasMemberMeta Attack PatternMeta Attack Pattern148Content Spoofing
Mechanisms of Attack (primary)1000
HasMemberMeta Attack PatternMeta Attack Pattern151Identity Spoofing
Mechanisms of Attack (primary)1000
HasMemberMeta Attack PatternMeta Attack Pattern154Resource Location Spoofing
Mechanisms of Attack (primary)1000
HasMemberMeta Attack PatternMeta Attack Pattern173Action Spoofing
Mechanisms of Attack (primary)1000
HasMemberMeta Attack PatternMeta Attack Pattern416Manipulate Human Behavior
Mechanisms of Attack (primary)1000
MemberOfViewView1000Mechanisms of Attack
Mechanisms of Attack1000
+ Content History
CAPEC Content TeamThe MITRE Corporation2014-06-23Internal_CAPEC_Team
CAPEC Content TeamThe MITRE Corporation2015-11-09Updated RelationshipsInternal
CAPEC Content TeamThe MITRE Corporation2017-01-09Updated RelationshipsInternal
Previous Entry Names
DatePrevious Entry Name
2017-01-09Deceptive Interactions

More information is available — Please select a different filter.
Page Last Updated or Reviewed: August 04, 2017