WF-E-1 — Attacker uses another tenant's JWT to access user data
Component: Wallet Frontend. Mitigations:
tenant_idextracted from JWT claim (authoritative); disabled tenants rejected 403. Action: None required.
| Property | Value |
|---|---|
| Section | Elevation of Privilege |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-ACCESS-01 | Multi-Tenant Isolation |
Source: STRIDE analysis (April 2026), architecture/stride-threat-model.md