WB-E-3 — Attacker calls go-trust /evaluation endpoint directly, bypassing SPOCP firewall
Component: Wallet Backend. Mitigations: SPOCP firewall is fail-closed in production (
GIN_MODE=release);/evaluationonly evaluates publicly available trust information (TSL membership, OIDF trust anchors) — no user-specific or privileged data is returned. Action: Network-restrict go-trust to application zone as defence-in-depth; no application-layer authentication required given the public nature of the trust information
| Property | Value |
|---|---|
| Section | Elevation of Privilege |
| Owner | operator |
Mapped Controls
| Control | Title |
|---|---|
| SID-TRUST-02 | Multi-Registry Trust Framework Support |
| SID-ACCESS-04 | SPOCP Policy-Based Query Authorization |
Source: STRIDE analysis (April 2026), architecture/stride-threat-model.md