Threat Modeling

Hacking Connected Cars Pub Date : 2018-12-17 DOI:10.1201/9780429506475-12

James Helfrich

{"title":"Threat Modeling","authors":"James Helfrich","doi":"10.1201/9780429506475-12","DOIUrl":null,"url":null,"abstract":"Threat modeling and analysis provides a complete view about the security of a system. It is performed by a systematic and strategic way for identifying and enumerating threats to a system. 1. Some Common Definition (RFC 2828) Vulnerability: \" A flaw or weakness in a system's design, implementation, or operation and management that could be exploited to violate the system's security policy \" Threat: \" A potential for violation of security, which exists when there is a circumstance, capability, action, or event that could breach security and cause harm... a threat is a possible danger that might exploit a vulnerability \" Attack: \" An assault on system security that derives from an intelligent threat, to evade security services and violate the security policy of a system. \" 2. Modeling Phases We are currently following an iterative step, starting from the higher level – identifying major components and identification of threats from overall perspective. In the second part, we are performing threat analysis for each of the earlier identified components then passing data through those components from identified major use case. Finally, we merge the analysis report to one. Questions: component breakdown or use case breakdown is better option ? Figure 1: An iterative process for threat identification","PeriodicalId":253087,"journal":{"name":"Hacking Connected Cars","volume":"27 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2018-12-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"316","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Hacking Connected Cars","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1201/9780429506475-12","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 316

Abstract

Threat modeling and analysis provides a complete view about the security of a system. It is performed by a systematic and strategic way for identifying and enumerating threats to a system. 1. Some Common Definition (RFC 2828) Vulnerability: " A flaw or weakness in a system's design, implementation, or operation and management that could be exploited to violate the system's security policy " Threat: " A potential for violation of security, which exists when there is a circumstance, capability, action, or event that could breach security and cause harm... a threat is a possible danger that might exploit a vulnerability " Attack: " An assault on system security that derives from an intelligent threat, to evade security services and violate the security policy of a system. " 2. Modeling Phases We are currently following an iterative step, starting from the higher level – identifying major components and identification of threats from overall perspective. In the second part, we are performing threat analysis for each of the earlier identified components then passing data through those components from identified major use case. Finally, we merge the analysis report to one. Questions: component breakdown or use case breakdown is better option ? Figure 1: An iterative process for threat identification

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

威胁建模

威胁建模和分析提供了关于系统安全性的完整视图。它是通过一种系统的和战略性的方式来识别和列举对系统的威胁。1. 一些通用定义(RFC 2828)漏洞:“系统设计、实现或操作和管理中的缺陷或弱点，可能被利用来违反系统的安全策略”威胁:“违反安全性的潜在危险，当存在可能违反安全性并造成伤害的情况、能力、操作或事件时存在……“攻击”:源自智能威胁的对系统安全性的攻击，以逃避安全服务并违反系统的安全策略。“2。我们目前正在遵循一个迭代的步骤，从更高的层次开始——从整体的角度识别主要组件和识别威胁。在第二部分中，我们将对前面确定的每个组件执行威胁分析，然后将来自确定的主要用例的数据传递给这些组件。最后，我们将分析报告合并为一个。问题:组件分解或用例分解是更好的选择?图1:威胁识别的迭代过程

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助