WF-T-2 — Attacker injects a rogue ECDH public key to re-wrap the main key
Component: Wallet Frontend. Mitigations: Main key re-encryption uses ECDH P-256 ephemeral keypair generated in browser; server stores opaque blob only. Action: None required.
| Property | Value |
|---|---|
| Section | Tampering |
| Owner | platform |
Mapped Controls
| Control | Title |
|---|---|
| SID-CRYPTO-01 | PKCS#11 HSM Key Protection |
| SID-CRYPTO-02 | PRF Extension Key Derivation |
Source: STRIDE analysis (April 2026), architecture/stride-threat-model.md