一种基于STRIDE威胁模型的风险评估方法

470[1][2]STRIDESTRIDE[3]6(Spoofing)(Tampering)(Repudiation)(InformationDisclosure)(DenialofService)(ElevationofPrivilege)STRIDESTRIDE1STRIDE1V5112STRIDESTRIDETP393.08A1009-8054(2009)10-0047-03InformationSecurityRiskAssessmentApproachBasedonSTRIDEThreatModel*HEWei1,TANShu-guang1,CHENPing2(1LenovoSecurityTechnologies(Beijing),lnc.,Beijing100086,China;2InstituteofSoftware,ChineseAcademyofSciences,Beijing100190,China)AbstractThispaperpresentsaninformationsecurityassessmentapproachbasedonthreatmodel.ThroughbuildingaSTRIDEthreatmodelforthedatastreamsoftheinformationsysteminvolvingthekeyassets,thethreatisidentified,andtheprobabilityandseriousnessofthethreatisquantified,thustofurtherassessthesecurityriskoftheinformationsystem.Keywordsriskassessment;threatmodel;STRIDE2009-09-101972197619832008STRIDESTRIDE2223DF1DF2DF33STRIDESTRIDESTRIDE3(1)DF1WebWeb(/)(2)DF2DDoSWeb()WebWeb(/)WebWeb()WebWeb(/)Web(//)(3)DF3TCP/IP()()(/)4(1)PP=TqATq483A31-5(2)31-5533R=PDAPDA49R6[1].[M].200601-02.[2]GB/T20984-2007[S].[3]MimhaelH.DavidL.WritingSecureCode[M].BeijingChinaMachinePress2002.(ISCCC)http//!1.2.3.4.5.1.452.33.4.5.duyt@isccc.gov.cn10()100020