21 lines (16 loc) · 745 Bytes

SAFE-M-19: Token Usage Tracking

Overview

Mitigation ID: SAFE-M-19
Type: Detective Control
Complexity: High
Effectiveness: Medium

Description

Monitor usage patterns of OAuth tokens obtained through MCP to detect anomalous access patterns that may indicate compromised tokens.

Implementation

[To be documented]

Related Techniques

SAFE-T1007: OAuth Authorization Phishing
SAFE-T1202: OAuth Token Persistence
SAFE-T1801: Automated Data Harvesting

References

OAuth 2.0 Security Best Current Practice

⚡