Passive Certificate Analysis

['Collecting host certificates from network traffic or other passive sources like a certificate transparency log and analyzing them for unauthorized activity.', 'Passively collecting certificates and analyzing them.']

ID: D3-PCA
Subclasses: 
Artifacts:  Certificate File
Tactic:

Informational References

https://d3fend.mitre.org/technique/d3f:PassiveCertificateAnalysis/

Countermeasures

ID Name Description NIST Rev5 D3FEND ISO 27001

Related SPARTA Techniques and Sub-Techniques

ID Name Description

Space Threats Mapped

ID Description

Sample Requirements

Requirement Rationale/Additional Guidance/Notes