Add to collection(s) Add to saved
  1. Engineering & Technology
  2. Computer Science
  3. Information Security

17-654/17-754: Analysis of Software Artifacts Jonathan Aldrich Assignment 13: Security Analysis

advertisement 
17-654/17-754: Analysis of Software Artifacts
Jonathan Aldrich
Assignment 13: Security Analysis
Assignment Objectives:
● Understand the STRIDE model and be able to apply it to analyze the security of a concrete
application.
Teams and Hand-in Guidelines. You may work alone or in pairs on this assignment. Turn in a
file in text, pdf, or Microsoft Word (.doc) format containing your responses to each of the written
questions. At the top of the file, state your name.
Question 1. Perform a STRIDE analysis for a social networking site such as Facebook or
MySpace. Come up with at least one threat for each element of the model below. Assign each a
probability and impact on a scale of 1-5 and multiply these to compute a risk.
Threat
Spoofing Identity
Tampering with Data
Repudiation
Information Disclosure
Denial of Service
Elevation of Privilege
Probability
Impact
Risk
Question 2. Name one reasonable way of responding to each of the threats you came up with
above.
Spoofing Identity
Tampering with Data
Repudiation
Information Disclosure
Denial of Service
Elevation of Privilege
Related documents
LG Electronics - Software Analysis Course
LG Electronics - Software Analysis Course
Sea Breeze - The Grinnell Review
Sea Breeze - The Grinnell Review
IP Spoofing
IP Spoofing
Anti Spoofing
Anti Spoofing
Analytical Study on Network Security Breach’s
Analytical Study on Network Security Breach’s
Food Security Preventive Measures Guidance
Food Security Preventive Measures Guidance
ANTI- TAMPERING SYSTEM (ATS) FROM SANNENG
ANTI- TAMPERING SYSTEM (ATS) FROM SANNENG
Tampering: A "foreseeable possibility"
Tampering: A "foreseeable possibility"
Download
advertisement