The authentication scheme or implementation uses key data
					elements that are assumed to be immutable, but can be controlled or modified by
					the attacker.