WF-E-2 — Attacker forces schema downgrade (v2 → v1) to bypass ECDH wrapping
Component: Wallet Frontend. Mitigations: Format upgrade is client-driven; backend stores whatever the client submits. Action: Validate minimum container schema version server-side
| Property | Value |
|---|---|
| Section | Elevation of Privilege |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-DATA-03 | Credential Revocation via Token Status List |
Source: STRIDE analysis (April 2026), architecture/stride-threat-model.md