Threat Modeling
STRIDE, DREAD, attack trees, and threat modeling methodologies.
Overview
Threat modeling identifies and prioritizes security threats.
STRIDE Model
| Category | Description | Example |
|---|---|---|
| Spoofing | Identity impersonation | Fake login |
| Tampering | Data modification | Man-in-the-middle |
| Repudiation | Denying actions | Log deletion |
| Information Disclosure | Data exposure | SQL injection |
| Denial of Service | Availability loss | DDoS |
| Elevation of Privilege | Unauthorized access | Privilege escalation |
DREAD Rating
Architecture Diagram
D - Damage potential
R - Reproducibility
E - Exploitability
A - Affected users
D - Discoverability
Score 1-10 for each:
High: 8-10
Medium: 4-7
Low: 1-3
Attack Tree
Architecture Diagram
Goal: Steal customer data
āāā Compromise database
ā āāā SQL injection
ā āāā Credential theft
ā āāā Backup exposure
āāā Intercept network traffic
ā āāā Man-in-the-middle
ā āāā Packet sniffing
āāā Social engineering
āāā Phishing
āāā Pretexting
Threat Model Process
Architecture Diagram
1. Define scope ā Systems, data
2. Identify assets ā What to protect
3. Create diagram ā Data flows
4. Identify threats ā STRIDE
5. Rate threats ā DREAD
6. Mitigate ā Controls
7. Validate ā Verify
Data Flow Diagram
Architecture Diagram
āāāāāāāāāāāā āāāāāāāāāāāā
ā User āāāāāāā Web App ā
āāāāāāāāāāāā āāāāāā¬āāāāāā
ā
āāāāāā¼āāāāāā
ā Database ā
āāāāāāāāāāāā
Practice
Conduct threat modeling for a web application using STRIDE.