About: STRIDE (security)

Facets (new session)
Description
Metadata
Settings
- Rule:
- Inverse Functional Properties:
- "Same As":

About: STRIDE (security) Goto Sponge NotDistinct Permalink

An Entity of Type : owl:Thing, within Data Space : dbpedia.org associated with source document(s)
QRcode icon

http://dbpedia.org/describe/?url=http%3A%2F%2Fdbpedia.org%2Fresource%2FSTRIDE_%28security%29

STRIDE is a model for identifying computer security threats developed by Praerit Garg and Loren Kohnfelder at Microsoft. It provides a mnemonic for security threats in six categories. The threats are: * Spoofing * Tampering * Repudiation * Information disclosure (privacy breach or data leak) * Denial of service * Elevation of privilege Today it is often used by security experts to help answer the question "what can go wrong in this system we're working on?" Each threat is a violation of a desirable property for a system:

Attributes	Values
rdfs:label	STRIDE (IT-Sicherheit) (de) STRIDE (seguridad) (es) STRIDE (security) (en) STRIDE (zh)
rdfs:comment	STRIDE是微软的Praerit Garg和Loren Kohnfelder建立的威脅模型，目的是在找出電腦安全上的。是六種安全威脅分類英文的字首組成的助憶詞。這六種威脅是： * 欺騙（Spoofing） * 篡改（Tampering）：也就是資料修改 * 否認（Repudiation） * 資訊泄露（Information disclosure），可能是或是資料外洩 * 阻斷服務攻擊（Denial of service） * 特权提升（Elevation of privilege） STRIDE一開始是設計作為威脅模型分析程序的部份。STRIDE是威脅模型，讓分析者可以理解威脅系統的方式，並設法找出威脅。STRIDE可以和目標系統的模型一起使用。分析過程會將程序、資料儲存、資料流及信任邊界（Trust boundaries）進行完整的拆解。安全專家會用STRIDE來回答這個問題：「目前運作的系統中，哪些地方可能會有問題？」每一個的威脅都會影響理想的系統屬性： (zh) STRIDE ist ein Modell von Sicherheitsrisiken welches von Praerit Garg und Loren Kohnfelder bei Microsoft entwickelt wurde STRIDE unterscheidet folgende 6 Kategorien an Sicherheitsrisiken: * Spoofing (Identitätsverschleierung) * Tampering (Manipulation) * Repudiation (Verleugnung) * Information disclosure (Verletzung der Privatsphäre oder Datenpanne) * Denial of service (Verweigerung des Dienstes) * Elevation of privilege (Rechteausweitung) STRIDE wird häufig von Sicherheitsexperten verwendet, um die Frage zu beantworten: "Was kann in dem System, an dem wir arbeiten, schief gehen?" (de) STRIDE es un modelo de amenazas desarrollado por Praerit Garg y Loren Kohnfelder en Microsoft para la identificación de amenazas de seguridad informática. Esta proporciona un mnemónico para las amenazas a la seguridad en seis categorías Las amenazas son: * Suplantación de identidad de usuario * Tampering * Repudio * Divulgación de información (brecha de privacidad o filtración de información) * Denegación de servicio (D.o.S) * Elevación de privilegios Cada amenaza es una violación de una propiedad deseable para un sistema: (es) STRIDE is a model for identifying computer security threats developed by Praerit Garg and Loren Kohnfelder at Microsoft. It provides a mnemonic for security threats in six categories. The threats are: * Spoofing * Tampering * Repudiation * Information disclosure (privacy breach or data leak) * Denial of service * Elevation of privilege Today it is often used by security experts to help answer the question "what can go wrong in this system we're working on?" Each threat is a violation of a desirable property for a system: (en)
dcterms:subject	Computer security
Wikipage page ID	10093926 (xsd:integer)
Wikipage revision ID	1099419326 (xsd:integer)
Link from a Wikipage to another Wikipage	Denial-of-service attack DREAD (risk assessment model) Information security Computer security Mnemonic Data privacy Spoofing attack Tampering (crime) Privilege escalation Non-repudiation Attack tree Computer security Threat (computer) Microsoft OWASP Off-the-Record Messaging Loren Kohnfelder Data leak Threat modeling Cyber security and countermeasure
Link from a Wikipage to an external page	https://web.archive.org/web/20070303103639/http:/msdn.microsoft.com/msdnmag/issues/06/11/ThreatModeling/default.aspx
sameAs	STRIDE (security) STRIDE (security) STRIDE (security) STRIDE (security) STRIDE (security) STRIDE (security)
dbp:wikiPageUsesTemplate	dbt:Comp-sci-stub dbt:Reflist
has abstract	STRIDE ist ein Modell von Sicherheitsrisiken welches von Praerit Garg und Loren Kohnfelder bei Microsoft entwickelt wurde STRIDE unterscheidet folgende 6 Kategorien an Sicherheitsrisiken: * Spoofing (Identitätsverschleierung) * Tampering (Manipulation) * Repudiation (Verleugnung) * Information disclosure (Verletzung der Privatsphäre oder Datenpanne) * Denial of service (Verweigerung des Dienstes) * Elevation of privilege (Rechteausweitung) STRIDE wurde ursprünglich als Teil der Prozesse rund um "threat modeling" erstellt. Es handelt sich um ein Modell das dazu dient, Bedrohungen für ein System zu erkennen. Dazu gehört eine vollständige Aufschlüsselung der Prozesse, Datenspeicher, Datenflüsse und Vertrauensgrenzen. STRIDE wird häufig von Sicherheitsexperten verwendet, um die Frage zu beantworten: "Was kann in dem System, an dem wir arbeiten, schief gehen?" (de) STRIDE es un modelo de amenazas desarrollado por Praerit Garg y Loren Kohnfelder en Microsoft para la identificación de amenazas de seguridad informática. Esta proporciona un mnemónico para las amenazas a la seguridad en seis categorías Las amenazas son: * Suplantación de identidad de usuario * Tampering * Repudio * Divulgación de información (brecha de privacidad o filtración de información) * Denegación de servicio (D.o.S) * Elevación de privilegios STRIDE fue creado inicialmente como parte del proceso de STRIDE es un modelo de amenazas, utilizado para ayudar a razonar y encontrar amenazas a un sistema. Está utilizado conjuntamente con un modelo del sistema objetivo que puede ser construido en paralelo. Esto incluye un desglose lleno de procesos, bancos de datos, flujos de datos y fronteras de confianza. Hoy es a menudo utilizado por expertos de seguridad para ayudar contestar la pregunta "¿Qué puede salir mal en el sistema en el que estamos trabajando?" Cada amenaza es una violación de una propiedad deseable para un sistema: (es) STRIDE is a model for identifying computer security threats developed by Praerit Garg and Loren Kohnfelder at Microsoft. It provides a mnemonic for security threats in six categories. The threats are: * Spoofing * Tampering * Repudiation * Information disclosure (privacy breach or data leak) * Denial of service * Elevation of privilege The STRIDE was initially created as part of the process of threat modeling. STRIDE is a model of threats, used to help reason and find threats to a system. It is used in conjunction with a model of the target system that can be constructed in parallel. This includes a full breakdown of processes, data stores, data flows, and trust boundaries. Today it is often used by security experts to help answer the question "what can go wrong in this system we're working on?" Each threat is a violation of a desirable property for a system: (en) STRIDE是微软的Praerit Garg和Loren Kohnfelder建立的威脅模型，目的是在找出電腦安全上的。是六種安全威脅分類英文的字首組成的助憶詞。這六種威脅是： * 欺騙（Spoofing） * 篡改（Tampering）：也就是資料修改 * 否認（Repudiation） * 資訊泄露（Information disclosure），可能是或是資料外洩 * 阻斷服務攻擊（Denial of service） * 特权提升（Elevation of privilege） STRIDE一開始是設計作為威脅模型分析程序的部份。STRIDE是威脅模型，讓分析者可以理解威脅系統的方式，並設法找出威脅。STRIDE可以和目標系統的模型一起使用。分析過程會將程序、資料儲存、資料流及信任邊界（Trust boundaries）進行完整的拆解。安全專家會用STRIDE來回答這個問題：「目前運作的系統中，哪些地方可能會有問題？」每一個的威脅都會影響理想的系統屬性： (zh)
gold:hypernym	System
prov:wasDerivedFrom	wikipedia-en:STRIDE_(security)?oldid=1099419326&ns=0
page length (characters) of wiki page	4273 (xsd:nonNegativeInteger)
foaf:isPrimaryTopicOf	wikipedia-en:STRIDE_(security)
is Link from a Wikipage to another Wikipage of	DREAD (risk assessment model) Stride Cybersecurity information technology list Threat (computer) Loren Kohnfelder Threat model
is Wikipage disambiguates of	Stride
is foaf:primaryTopic of	wikipedia-en:STRIDE_(security)

Faceted Search & Find service v1.17_git139 as of Feb 29 2024

Alternative Linked Data Documents: ODE Content Formats:

RDF

ODATA

Microdata

About

OpenLink Virtuoso version 08.03.3330 as of Mar 19 2024, on Linux (x86_64-generic-linux-glibc212), Single-Server Edition (61 GB total memory, 49 GB memory in use)
Data on this page belongs to its respective rights holders.
Virtuoso Faceted Browser Copyright © 2009-2024 OpenLink Software