Home > CAPEC List > CAPEC-195: Principal Spoof (Version 2.9)  

CAPEC-195: Principal Spoof

Principal Spoof
Definition in a New Window Definition in a New Window
Attack Pattern ID: 195
Abstraction: Standard
Status: Draft
Completeness: Stub
Presentation Filter:
+ Summary

A Principle Spoof is a form of Identity Spoofing where an adversary pretends to be some other person in an interaction. This is often accomplished by crafting a message (either written, verbal, or visual) that appears to come from a person other than the adversary. Phishing and Pharming attacks often attempt to do this so that their attempts to gather sensitive information appear to come from a legitimate source. A Principle Spoof does not use stolen or spoofed authentication credentials, instead relying on the appearance and content of the message to reflect identity. The possible outcomes of a Principal Spoof mirror those of Identity Spoofing. (e.g., escalation of privilege and false attribution of data or activities) Likewise, most techniques for Identity Spoofing (crafting messages or intercepting and replaying or modifying messages) can be used for a Principal Spoof attack. However, because a Principal Spoof is used to impersonate a person, social engineering can be both an attack technique (using social techniques to generate evidence in support of a false identity) as well as a possible outcome (manipulating people's perceptions by making statements or performing actions under a target's name).

+ Attack Prerequisites
  • The target must associate data or activities with an person's identity and the adversary must be able to modify this identity without detection.

+ Typical Severity


+ Resources Required

No special resources are required for most variants of this attack.

+ Content History
CAPEC Content TeamThe MITRE Corporation2014-06-23Internal_CAPEC_Team

More information is available — Please select a different filter.
Page Last Updated or Reviewed: December 07, 2015