TR-E-1 — Attacker enumerates trust anchor membership via unauthenticated /evaluation
Component: Trust Evaluation. Mitigations: Trust anchor membership is derived from public ETSI TSLs and OIDF federation metadata; enumeration reveals no non-public information. Action: Network-restrict to application zone as defence-in-depth
| Property | Value |
|---|---|
| Section | Elevation of Privilege |
| Owner | operator |
Mapped Controls
| Control | Title |
|---|---|
| SID-TRUST-02 | Multi-Registry Trust Framework Support |
Source: STRIDE analysis (April 2026), architecture/stride-threat-model.md