STRIDE “Threat” Model: Outdated and Confusing (ft. Formula 1)

In 1999, the Microsoft Security Task Force introduced the STRIDE "threat" model as a means of identifying threats to Microsoft products during the design phase. STRIDE is an acronym that represents six “threat” categories. STRIDE Acronym from The Threats to our Products According to the paper that introduced the STRIDE model, “The Threats to our Products”, the intent of these six threat categories is to help identify vulnerabilities and then take measures to close security gaps. This intent is good and there is no doubt that the tool was a net positive for many years as it helped software developers…


End of content

No more pages to load