WF-T-1 — Attacker modifies WalletStateContainer stored on the backend
Component: Wallet Frontend. Mitigations: ETag optimistic locking (412 on conflict); JWE-encrypted container; event-chain
parentHashintegrity. Action: None required.
| Property | Value |
|---|---|
| Section | Tampering |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-DATA-03 | Credential Revocation via Token Status List |
| SID-CRYPTO-01 | PKCS#11 HSM Key Protection |
Source: STRIDE analysis (April 2026), architecture/stride-threat-model.md