Hardensubtechnique

D3-CEROCertificate Rotation

Definition

Certificate rotation involves replacing digital certificates and their private keys to maintain cryptographic integrity and trust, mitigating key compromise risks and ensuring continuous secure communications.

Defends against20

TypeTargetConfidenceTier
TechniqueSteal or Forge Kerberos Ticketst1558100%live
SubTechnique/etc/passwd and /etc/shadowt1003.008100%live
SubTechniqueWeb Session Cookiet1550.004100%live
SubTechniquePassword Sprayingt1110.003100%live
TechniqueSteal Application Access Tokent1528100%live
SubTechniqueNTDSt1003.003100%live
SubTechniquePassword Guessingt1110.001100%live
SubTechniquePassword Crackingt1110.002100%live
SubTechniqueToken Impersonation/Theftt1134.001100%live
TechniqueForge Web Credentialst1606100%live
SubTechniqueApplication Access Tokent1550.001100%live
SubTechniqueWeb Cookiest1606.001100%live
SubTechniqueAdditional Cloud Credentialst1098.001100%live
SubTechniqueCached Domain Credentialst1003.005100%live
SubTechniqueCreate Process with Tokent1134.002100%live
SubTechniqueMake and Impersonate Tokent1134.003100%live
TechniqueUnsecured Credentialst1552100%live
TechniqueSteal Web Session Cookiet1539100%live
TechniqueSteal or Forge Authentication Certificatest1649100%live
SubTechniqueGolden Tickett1558.001100%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

Defence
Credential Rotation
Defence
Password Rotation
Defence
Certificate Analysis
Defence
Credential Revocation
Defence
Credential Hardening
Defence
Active Certificate Analysis
Sourced from MITRE D3FEND ontology. Curated by Adam Lundqvist, SQUR.