ENISA: To mitigate credential compromise or theft, cloud provider can implement:
ENISA: To mitigate credential compromise or theft, cloud provider can implement:
To mitigate credential compromise or theft, cloud providers can implement anomaly detection capabilities. These capabilities involve monitoring and analyzing user behavior, such as failed and successful login attempts, unusual login times, and multiple logins, to detect any unusual and potentially malicious activities. This helps in identifying and responding to unauthorized access attempts promptly, thereby reducing the risk of credential theft and misuse.
ENISA pg77: CREDENTIAL COMPROMISE OR THEFT Do you provide anomaly detection (the ability to spot unusual and potentially malicious IP traffic and user or support team behaviour)? For example, analysis of failed and successful logins, unusual time of day, and multiple logins, etc. What provisions exist in the event of the theft of a customer’s credentials (detection, revocation, evidence for actions)?