Information disclosure - seeing data I'm not supposed to see
Information disclosure occurs when sensitive data is exposed to unauthorized individuals. It can happen with or without intention.
Examples include:
- System reveals sensitive data through error messages.
- Users access unauthorized documents and folders with weak security controls.
- Users access data flowing through an unsecured network.
Elements and interactions at risk from information disclosure
Element
Name | Shape | Definition |
---|---|---|
Process | Activity that modifies or redirects input to an output | |
Data store | Permanent or temporary data storage | |
Data-flow | Data movement between elements |
Interaction
Name | Interaction | Definition |
---|---|---|
Process -> Process | A task sends data to another task | |
Process <-> External entity | A task sends or receives data to or from a user | |
Process <-> Data store | A task sends or receives data to or from a data store | |
Data Flow <-> Trust boundary | Data is transmitted from a trusted environment to someone over the internet (and vice-versa) |
How to prevent information disclosure
Confidentiality ensures data is protected.
Examples include:
- Applying access-control lists to ensure the right users can access the right data.
- Encrypting data at rest, in transit, and in use.
- Enforcing SSL/TLS to secure transmission.
- Using IPSec tunnels to secure communication across endpoints.
Common security controls to reduce or eliminate risk
- Encryption
- Access Control Lists (ACL)
Tip
Good question to ask: Can I be sure no one can see my data in transit and at rest?
Check your knowledge
Need help? See our troubleshooting guide or provide specific feedback by reporting an issue.