CWE-1302: Missing Security Identifier
Description
The product implements a security identifier mechanism to differentiate what actions are allowed or disallowed when a transaction originates from an entity. A transaction is sent without a security identifier.
Submission Date :
Feb. 14, 2020, midnight
Modification Date :
2023-06-29 00:00:00+00:00
Organization :
Intel Corporation
Extended Description
In a System-On-Chip (SoC), various integrated circuits and hardware engines generate transactions such as to access (reads/writes) assets or perform certain actions (e.g., reset, fetch, compute). A typical transaction is comprised of source identity (to identify the originator of the transaction) and a destination identity (to route the transaction to the respective entity) in addition to much more information in the message. Sometimes the transactions are qualified with a Security Identifier. This Security Identifier helps the destination agent decide on the set of allowed or disallowed actions.
A common weakness that can exist in such transaction schemes is that the source agent fails to include the necessary, security identifier with the transaction. Because of the missing security identifier, the destination agent might drop the message, thus resulting in Denial-of-Service (DoS), or get confused in its attempt to execute the given action, which confusion could result in privilege escalation or a gain of unintended access.
Example - 1
<xhtml_table><xhtml_tr><xhtml_th>Register</xhtml_th><xhtml_th>Field description</xhtml_th></xhtml_tr><xhtml_tr><xhtml_td>AES_ENC_DEC_KEY_0</xhtml_td><xhtml_td>AES key [0:31] for encryption or decryption, Default 0x00000000</xhtml_td></xhtml_tr><xhtml_tr><xhtml_td>AES_ENC_DEC_KEY_1</xhtml_td><xhtml_td>AES key [32:63] for encryption or decryption, Default 0x00000000</xhtml_td></xhtml_tr><xhtml_tr><xhtml_td>AES_ENC_DEC_KEY_2</xhtml_td><xhtml_td>AES key [64:95] for encryption or decryption, Default 0x00000000</xhtml_td></xhtml_tr><xhtml_tr><xhtml_td>AES_ENC_DEC_KEY_4</xhtml_td><xhtml_td>AES key [96:127] for encryption or decryption, Default 0x00000000</xhtml_td></xhtml_tr><xhtml_tr><xhtml_td>AES_KEY_ACCESS_POLICY</xhtml_td><xhtml_td>[31:0] Default 0x00000004 - agent with Security Identifier "2" has access to AES_ENC_DEC_KEY_0 through AES_ENC_DEC_KEY_4 registers</xhtml_td></xhtml_tr></xhtml_table>
The originator sends a transaction with no security identifier, i.e., meaning the value is "0" or NULL. The AES-Key-access register does not allow the necessary action and drops the transaction because the originator failed to include the required security identifier.
<xhtml_table><xhtml_tr><xhtml_th>Register</xhtml_th><xhtml_th>Field description</xhtml_th></xhtml_tr><xhtml_tr><xhtml_td>AES_ENC_DEC_KEY_0</xhtml_td><xhtml_td>AES key [0:31] for encryption or decryption, Default 0x00000000</xhtml_td></xhtml_tr><xhtml_tr><xhtml_td>AES_ENC_DEC_KEY_1</xhtml_td><xhtml_td>AES key [32:63] for encryption or decryption, Default 0x00000000</xhtml_td></xhtml_tr><xhtml_tr><xhtml_td>AES_ENC_DEC_KEY_2</xhtml_td><xhtml_td>AES key [64:95] for encryption or decryption, Default 0x00000000</xhtml_td></xhtml_tr><xhtml_tr><xhtml_td>AES_ENC_DEC_KEY_4</xhtml_td><xhtml_td>AES key [96:127] for encryption or decryption, Default 0x00000000</xhtml_td></xhtml_tr><xhtml_tr><xhtml_td>AES_KEY_ACCESS_POLICY</xhtml_td><xhtml_td>[31:0] Default 0x00000002 - agent with security identifier "2" has access to AES_ENC_DEC_KEY_0 through AES_ENC_DEC_KEY_4 registers</xhtml_td></xhtml_tr></xhtml_table>
The originator should send a transaction with Security Identifier "2" which will allow access to the AES-Key-access register and allow encryption and decryption operations.
Related Weaknesses
This table shows the weaknesses and high level categories that are related to this weakness. These relationships are defined to give an overview of the different insight to similar items that may exist at higher and lower levels of abstraction.
Visit http://cwe.mitre.org/ for more details.