Threat Modeling

 

What are the threats? 

  • It is important to know what you are trying to protect against
  • And what kind of attacks you are going to ignore

Security based analysis to determine

  • Highest level security risks posed to the product
  • How attacks can manifest themselves

Goals

  • Determine which threat requires mitigation
  • How to mitigate the threats

 

You cannot build a secure system until 

you understand your threats

 

 

Benefits

  • Helps you understand your application better
  • Helps you find bugs
  • Helps you find complex design bugs not likely found in any other way
  • Help new team members understand the application in detail
  • Should be read by other product teams that build on your product
  • Testers can test against threat model

Categorizing Threats

 

DREAD

  • Damage potential
  • Reproducibility
  • Exploitability
  • Affected Users
  • Discoverability

OCTAVE

  • Operationally 
  • Critical 
  • Threat
  • Asset
  • Vulnerability
  • Evaluation

STRIDE

  • Spoofing identity
  • Tampering with data
  • Repudiation
  • Information disclosure
  • Denial of service
  • Elevation of privilege

Threats Analysis

 

Threat Factors

  1. Existence
  2. Capabilities
  3. Intentions
  4. History
  5. Targeting

Threat Level

  • Critical (Factors 1,2,5 present)
  • High (1,2,3,4 present)
  • Medium (1,2,4 present)
  • Low (1,2 present)
  • Negligible (1 and/or 2 may be present)

Let us help you change your mindset and address cybersecurity

Cybersecurity