Threat Modeling Again, STRIDE

re: Threat Modeling Again, STRIDE

Gwyn — Tue, 04 Sep 2007 23:02:50 GMT

<i>STRIDE stands for "Spoofing", "Tampering", "Repudiation", "Information disclosure", "Denial of service", and "Elevation of privilege".

Essentially the idea is that you can classify all your threats according to one of the 5 STRIDE categories.</i>

Uhh, I think you'll find that's 6 categories ;)

LarryOsterman — Tue, 04 Sep 2007 23:54:39 GMT

Doh. Fixed.

Larry Osterman's WebLog — Wed, 05 Sep 2007 20:36:09 GMT

I described the 6 STRIDE categories the other day . In that post, I mentioned that there are "well understood"

Noticias externas — Wed, 05 Sep 2007 20:54:37 GMT

I described the 6 STRIDE categories the other day . In that post, I mentioned that there are "well

Larry Osterman's WebLog — Fri, 07 Sep 2007 17:52:41 GMT

In my last couple of posts , I've talked about the STRIDE categories. As I mentioned, STRIDE provides

The Security Development Lifecycle — Wed, 12 Sep 2007 03:05:03 GMT

Adam Shostack here. I've been meaning to talk more about what I actually do, which is help the teams

Larry Osterman's WebLog — Wed, 19 Sep 2007 01:48:56 GMT

I've been writing a LOT about threat modeling recently but one of the things I haven't talked about is

Larry Osterman's WebLog — Mon, 01 Oct 2007 19:54:08 GMT

I want to wrap up the threat modeling posts with a summary and some comments on the entire process. Yeah,

Noticias externas — Mon, 01 Oct 2007 19:55:55 GMT

I want to wrap up the threat modeling posts with a summary and some comments on the entire process. Yeah